diff --git a/AzureResourceManager/LICENSE b/AzureResourceManager/LICENSE deleted file mode 100644 index 261eeb9..0000000 --- a/AzureResourceManager/LICENSE +++ /dev/null @@ -1,201 +0,0 @@ - Apache License - Version 2.0, January 2004 - http://www.apache.org/licenses/ - - TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION - - 1. Definitions. - - "License" shall mean the terms and conditions for use, reproduction, - and distribution as defined by Sections 1 through 9 of this document. - - "Licensor" shall mean the copyright owner or entity authorized by - the copyright owner that is granting the License. - - "Legal Entity" shall mean the union of the acting entity and all - other entities that control, are controlled by, or are under common - control with that entity. For the purposes of this definition, - "control" means (i) the power, direct or indirect, to cause the - direction or management of such entity, whether by contract or - otherwise, or (ii) ownership of fifty percent (50%) or more of the - outstanding shares, or (iii) beneficial ownership of such entity. - - "You" (or "Your") shall mean an individual or Legal Entity - exercising permissions granted by this License. - - "Source" form shall mean the preferred form for making modifications, - including but not limited to software source code, documentation - source, and configuration files. - - "Object" form shall mean any form resulting from mechanical - transformation or translation of a Source form, including but - not limited to compiled object code, generated documentation, - and conversions to other media types. - - "Work" shall mean the work of authorship, whether in Source or - Object form, made available under the License, as indicated by a - copyright notice that is included in or attached to the work - (an example is provided in the Appendix below). - - "Derivative Works" shall mean any work, whether in Source or Object - form, that is based on (or derived from) the Work and for which the - editorial revisions, annotations, elaborations, or other modifications - represent, as a whole, an original work of authorship. For the purposes - of this License, Derivative Works shall not include works that remain - separable from, or merely link (or bind by name) to the interfaces of, - the Work and Derivative Works thereof. - - "Contribution" shall mean any work of authorship, including - the original version of the Work and any modifications or additions - to that Work or Derivative Works thereof, that is intentionally - submitted to Licensor for inclusion in the Work by the copyright owner - or by an individual or Legal Entity authorized to submit on behalf of - the copyright owner. For the purposes of this definition, "submitted" - means any form of electronic, verbal, or written communication sent - to the Licensor or its representatives, including but not limited to - communication on electronic mailing lists, source code control systems, - and issue tracking systems that are managed by, or on behalf of, the - Licensor for the purpose of discussing and improving the Work, but - excluding communication that is conspicuously marked or otherwise - designated in writing by the copyright owner as "Not a Contribution." - - "Contributor" shall mean Licensor and any individual or Legal Entity - on behalf of whom a Contribution has been received by Licensor and - subsequently incorporated within the Work. - - 2. Grant of Copyright License. Subject to the terms and conditions of - this License, each Contributor hereby grants to You a perpetual, - worldwide, non-exclusive, no-charge, royalty-free, irrevocable - copyright license to reproduce, prepare Derivative Works of, - publicly display, publicly perform, sublicense, and distribute the - Work and such Derivative Works in Source or Object form. - - 3. Grant of Patent License. Subject to the terms and conditions of - this License, each Contributor hereby grants to You a perpetual, - worldwide, non-exclusive, no-charge, royalty-free, irrevocable - (except as stated in this section) patent license to make, have made, - use, offer to sell, sell, import, and otherwise transfer the Work, - where such license applies only to those patent claims licensable - by such Contributor that are necessarily infringed by their - Contribution(s) alone or by combination of their Contribution(s) - with the Work to which such Contribution(s) was submitted. If You - institute patent litigation against any entity (including a - cross-claim or counterclaim in a lawsuit) alleging that the Work - or a Contribution incorporated within the Work constitutes direct - or contributory patent infringement, then any patent licenses - granted to You under this License for that Work shall terminate - as of the date such litigation is filed. - - 4. Redistribution. You may reproduce and distribute copies of the - Work or Derivative Works thereof in any medium, with or without - modifications, and in Source or Object form, provided that You - meet the following conditions: - - (a) You must give any other recipients of the Work or - Derivative Works a copy of this License; and - - (b) You must cause any modified files to carry prominent notices - stating that You changed the files; and - - (c) You must retain, in the Source form of any Derivative Works - that You distribute, all copyright, patent, trademark, and - attribution notices from the Source form of the Work, - excluding those notices that do not pertain to any part of - the Derivative Works; and - - (d) If the Work includes a "NOTICE" text file as part of its - distribution, then any Derivative Works that You distribute must - include a readable copy of the attribution notices contained - within such NOTICE file, excluding those notices that do not - pertain to any part of the Derivative Works, in at least one - of the following places: within a NOTICE text file distributed - as part of the Derivative Works; within the Source form or - documentation, if provided along with the Derivative Works; or, - within a display generated by the Derivative Works, if and - wherever such third-party notices normally appear. The contents - of the NOTICE file are for informational purposes only and - do not modify the License. You may add Your own attribution - notices within Derivative Works that You distribute, alongside - or as an addendum to the NOTICE text from the Work, provided - that such additional attribution notices cannot be construed - as modifying the License. - - You may add Your own copyright statement to Your modifications and - may provide additional or different license terms and conditions - for use, reproduction, or distribution of Your modifications, or - for any such Derivative Works as a whole, provided Your use, - reproduction, and distribution of the Work otherwise complies with - the conditions stated in this License. - - 5. Submission of Contributions. Unless You explicitly state otherwise, - any Contribution intentionally submitted for inclusion in the Work - by You to the Licensor shall be under the terms and conditions of - this License, without any additional terms or conditions. - Notwithstanding the above, nothing herein shall supersede or modify - the terms of any separate license agreement you may have executed - with Licensor regarding such Contributions. - - 6. Trademarks. This License does not grant permission to use the trade - names, trademarks, service marks, or product names of the Licensor, - except as required for reasonable and customary use in describing the - origin of the Work and reproducing the content of the NOTICE file. - - 7. Disclaimer of Warranty. Unless required by applicable law or - agreed to in writing, Licensor provides the Work (and each - Contributor provides its Contributions) on an "AS IS" BASIS, - WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or - implied, including, without limitation, any warranties or conditions - of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A - PARTICULAR PURPOSE. You are solely responsible for determining the - appropriateness of using or redistributing the Work and assume any - risks associated with Your exercise of permissions under this License. - - 8. Limitation of Liability. In no event and under no legal theory, - whether in tort (including negligence), contract, or otherwise, - unless required by applicable law (such as deliberate and grossly - negligent acts) or agreed to in writing, shall any Contributor be - liable to You for damages, including any direct, indirect, special, - incidental, or consequential damages of any character arising as a - result of this License or out of the use or inability to use the - Work (including but not limited to damages for loss of goodwill, - work stoppage, computer failure or malfunction, or any and all - other commercial damages or losses), even if such Contributor - has been advised of the possibility of such damages. - - 9. Accepting Warranty or Additional Liability. While redistributing - the Work or Derivative Works thereof, You may choose to offer, - and charge a fee for, acceptance of support, warranty, indemnity, - or other liability obligations and/or rights consistent with this - License. However, in accepting such obligations, You may act only - on Your own behalf and on Your sole responsibility, not on behalf - of any other Contributor, and only if You agree to indemnify, - defend, and hold each Contributor harmless for any liability - incurred by, or claims asserted against, such Contributor by reason - of your accepting any such warranty or additional liability. - - END OF TERMS AND CONDITIONS - - APPENDIX: How to apply the Apache License to your work. - - To apply the Apache License to your work, attach the following - boilerplate notice, with the fields enclosed by brackets "[]" - replaced with your own identifying information. (Don't include - the brackets!) The text should be enclosed in the appropriate - comment syntax for the file format. We also recommend that a - file or class name and description of purpose be included on the - same "printed page" as the copyright notice for easier - identification within third-party archives. - - Copyright [yyyy] [name of copyright owner] - - Licensed under the Apache License, Version 2.0 (the "License"); - you may not use this file except in compliance with the License. - You may obtain a copy of the License at - - http://www.apache.org/licenses/LICENSE-2.0 - - Unless required by applicable law or agreed to in writing, software - distributed under the License is distributed on an "AS IS" BASIS, - WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. - See the License for the specific language governing permissions and - limitations under the License. diff --git a/AzureResourceManager/MP_submission_7/createUiDefinition.json b/AzureResourceManager/MP_submission_7/createUiDefinition.json deleted file mode 100644 index b935f73..0000000 --- a/AzureResourceManager/MP_submission_7/createUiDefinition.json +++ /dev/null @@ -1,448 +0,0 @@ -{ - "$schema": "https://schema.management.azure.com/schemas/0.1.2-preview/CreateUIDefinition.MultiVm.json#", - "handler": "Microsoft.Azure.CreateUIDef", - "version": "0.1.2-preview", - "parameters": { - "basics": [ - {} - ], - "steps": [ - { - "name": "vmCredentials", - "label": "VM Credential", - "bladeTitle": "VM Credential", - "subLabel": { - "preValidation": "Provide VM credentials", - "postValidation": "Great - let's move on!" - }, - "elements": [ - { - "name": "adminUsername", - "type": "Microsoft.Compute.UserNameTextBox", - "label": "Admin username", - "osPlatform": "Linux", - "constraints": { - "required": true, - "regex": "^[a-z0-9A-Z]{1,30}$", - "validationMessage": "Only alphanumeric characters are allowed, and the value must be 1-30 characters long." - }, - "toolTip": "Provide admin username for the virtual machine" - }, - { - "name": "adminPassword", - "type": "Microsoft.Compute.CredentialsCombo", - "label": { - "password": "Password", - "confirmPassword": "Confirm password" - }, - "osPlatform": "Linux", - "constraints": { - "required": true, - "customPasswordRegex": "^(?=.*[A-Za-z])(?=.*\\d)(?=.*[@$!%*#?&])[A-Za-z\\d@$!%*#?&]{12,}$", - "customValidationMessage": "The password must contain at least 12 characters, with at least 1 uppercase letter, 1 lowercase letter and 1 number." - }, - "options": { - "hideConfirmation": false - }, - "toolTip": { - "password": "Provide admin password for the virtual machine" - }, - "visible": true - } - ] - }, - { - "name": "clusterConfig", - "label": "Artifactory Cluster settings", - "subLabel": { - "preValidation": "Configure Artifactory Cluster settings", - "postValidation": "Done!" - }, - "bladeTitle": "Artifactory Cluster Settings", - "elements": [ - { - "name": "clusterName", - "type": "Microsoft.Common.TextBox", - "label": "Cluster name", - "toolTip": "Cluster name", - "defaultValue": "", - "constraints": { - "required": true, - "regex": "^[a-z0-9A-Z]{1,30}$", - "validationMessage": "Only alphanumeric characters are allowed, and the value must be 1-30 characters long." - } - }, - { - "name": "vmSku", - "type": "Microsoft.Compute.SizeSelector", - "label": "Virtual machine size", - "toolTip": "The size of the virtual machine for Artifactory", - "recommendedSizes": [ - "Standard_D4s_v3" - ], - "constraints": { - "allowedSizes": [ - "Standard_A4_v2", - "Standard_A4", - "Standard_D2s_v3", - "Standard_D4s_v3", - "Standard_D8s_v3", - "Standard_D16s_v3", - "Standard_D32s_v3", - "Standard_DS3_v2", - "Standard_D2_v2", - "Standard_D3_v2", - "Standard_DC2s", - "Standard_DC4s" - ] - }, - "osPlatform": "Linux", - "count": 1 - }, - { - "name": "nodeCount", - "type": "Microsoft.Common.DropDown", - "label": "Number of additional VM instances for member Artifactory nodes. Minimum 1 node.(+1 primary = 2 node cluster)", - "defaultValue": "2", - "toolTip": "Number of Artifactory member nodes in cluster", - "constraints": { - "allowedValues": [ - { - "label": "1", - "value": 1 - }, - { - "label": "2", - "value": 2 - }, - { - "label": "3", - "value": 3 - }, - { - "label": "4", - "value": 4 - } - ], - "required": true - }, - "visible": "true" - }, - { - "name": "artifactoryVersion", - "type": "Microsoft.Common.DropDown", - "label": "Artifactory-vm image version to deploy.", - "defaultValue": "7.4.3", - "toolTip": "Version of Artifactory to deploy", - "constraints": { - "allowedValues": [ - { - "label": "6.8.0", - "value": "6.8.0" - }, - { - "label": "6.16.0", - "value": "0.16.0" - }, - { - "label": "6.17.0", - "value": "0.17.0" - }, - { - "label": "6.18.0", - "value": "6.18.0" - }, - { - "label": "7.2.1", - "value": "7.2.1" - }, - { - "label": "7.3.2", - "value": "0.3.2" - }, - { - "label": "7.4.3", - "value": "7.4.3" - } - ], - "required": true - }, - "visible": true - }, - { - "name": "masterKey", - "type": "Microsoft.Common.PasswordBox", - "label": { - "password": "Artifactory master Key", - "confirmPassword": "Confirm master Key" - }, - "toolTip": "Master key for Artifactory cluster. Generate master.key using command '$openssl rand -hex 16'", - "constraints": { - "required": true, - "regex": "^[a-z0-9A-Z]{1,32}$", - "validationMessage": "Only alphanumeric characters are allowed, and the value must be 1-32 characters long." - }, - "options": { - "hideConfirmation": true - } - }, - { - "name": "artifactoryLicense1", - "type": "Microsoft.Common.TextBox", - "label": "Artifactory Enterprise License.", - "toolTip": "Artifactory Enterprise License. Providing one license is mandatory", - "constraints": { - "required": true, - "regex": "^.{1,10000}", - "validationMessage": "Only Enterprise licenses are allowed." - } - }, - { - "name": "artifactoryLicense2", - "type": "Microsoft.Common.TextBox", - "label": "Artifactory Enterprise License.", - "toolTip": "Artifactory Enterprise License. Providing one license is mandatory", - "constraints": { - "required": true, - "regex": "^.{1,10000}", - "validationMessage": "Only Enterprise licenses are allowed." - } - }, - { - "name": "artifactoryLicense3", - "type": "Microsoft.Common.TextBox", - "label": "Artifactory Enterprise License.", - "toolTip": "Artifactory Enterprise License. Providing one license is mandatory", - "constraints": { - "required": false, - "regex": "^.{1,10000}", - "validationMessage": "Only Enterprise licenses are allowed." - } - }, - { - "name": "artifactoryLicense4", - "type": "Microsoft.Common.TextBox", - "label": "Artifactory Enterprise License.", - "toolTip": "Artifactory Enterprise License. Providing one license is mandatory", - "constraints": { - "required": false, - "regex": "^.{1,10000}", - "validationMessage": "Only Enterprise licenses are allowed." - } - }, - { - "name": "artifactoryLicense5", - "type": "Microsoft.Common.TextBox", - "label": "Artifactory Enterprise License.", - "toolTip": "Artifactory Enterprise License. Providing one license is mandatory", - "constraints": { - "required": false, - "regex": "^.{1,10000}", - "validationMessage": "Only Enterprise licenses are allowed." - } - }, - { - "name": "certificate", - "type": "Microsoft.Common.PasswordBox", - "label": { - "password": "Provide your SSL Certificate.", - "confirmPassword": "Confirm SSL Certificate." - }, - "toolTip": "To use Artifactory as docker registry you need to provide wild card valid Certificate. Provide your SSL Certificate.", - "constraints": { - "required": true, - "regex": "^(-----BEGIN CERTIFICATE-----)(.+)(-----END CERTIFICATE-----)$", - "validationMessage": "Provide SSL Certificate." - }, - "options": { - "hideConfirmation": true - } - }, - { - "name": "certificateKey", - "type": "Microsoft.Common.PasswordBox", - "label": { - "password": "Provide your SSL Certificate key.", - "confirmPassword": "Confirm SSL Certificate key." - }, - "toolTip": "Provide your SSL Certificate key", - "constraints": { - "required": true, - "regex": "^(-----BEGIN)(.+)(PRIVATE KEY-----)(.+)(-----END)(.+)(PRIVATE KEY-----)$", - "validationMessage": "Provide SSL Certificate Key." - }, - "options": { - "hideConfirmation": true - } - }, - { - "name": "certificateDomain", - "type": "Microsoft.Common.TextBox", - "label": "Provide your Certificate Domain Name.", - "defaultValue": "artifactory", - "toolTip": "Provide your Certificate Domain Name. For e.g jfrog.team for certificate with *.jfrog.team", - "constraints": { - "required": true, - "regex": "^(\\*)*([\\w-\\.])+$", - "validationMessage": "Must be a valid fully-qualified domain name." - } - }, - { - "name": "artifactoryServerName", - "type": "Microsoft.Common.TextBox", - "label": "Provide artifactory server name to be used in Nginx.", - "defaultValue": "artifactory", - "toolTip": "Provide artifactory server name to be used in Nginx. e.g artifactory for artifactory.jfrog.team", - "constraints": { - "required": true, - "regex": "^[a-z0-9A-Z]{1,20}$", - "validationMessage": "Only letters and numbers are allowed, and the value must be 1-20 characters long." - } - }, - { - "name": "extraJavaOptions", - "type": "Microsoft.Common.TextBox", - "label": "Setting Java Memory Parameters for Artifactory", - "defaultValue": "-server -Xms2g -Xmx8g -Xss256k -XX:+UseG1GC -XX:OnOutOfMemoryError=\\\"kill -9 %p\\\"", - "toolTip": "Setting Java Memory Parameters for Artifactory. Learn about system requirements for Artifactory https://www.jfrog.com/confluence/display/RTF/System+Requirements#SystemRequirements-RecommendedHardware.", - "constraints": { - "required": false, - "regex": "[^a-zA-Z0-9]+\\S+\\D", - "validationMessage": "Example: -server -Xms2g -Xmx12g -Xss256k -XX:+UseG1GC -XX:OnOutOfMemoryError=\\\"kill -9 %p\\\"" - } - } - ] - }, - { - "name": "databaseConfig", - "label": "Database Configuration", - "subLabel": { - "preValidation": "Configure the Database", - "postValidation": "Done" - }, - "bladeTitle": "Database Credential", - "elements": [ - { - "name": "dbAdminUsername", - "type": "Microsoft.Compute.UserNameTextBox", - "label": "User name", - "toolTip": "Admin username for the database", - "osPlatform": "Linux", - "constraints": { - "required": true, - "regex": "^[a-z0-9A-Z]{1,30}$", - "validationMessage": "Only alphanumeric characters are allowed, and the value must be 1-30 characters long." - } - }, - { - "name": "dbAdminPassword", - "type": "Microsoft.Common.PasswordBox", - "label": { - "password": "Password", - "confirmPassword": "Confirm password" - }, - "toolTip": "Admin password for the database", - "constraints": { - "required": true, - "regex": "^(?=.*[A-Za-z])(?=.*\\d)(?=.*[@$!%*#?&])[A-Za-z\\d@$!%*#?&]{12,}$", - "validationMessage": "The password must contain at least 12 characters, with at least 1 uppercase letter, 1 lowercase letter and 1 number." - }, - "options": { - "hideConfirmation": false - }, - "visible": true - }, - { - "name": "dbName", - "type": "Microsoft.Common.TextBox", - "label": "Database name", - "toolTip": "Database name", - "constraints": { - "required": true, - "regex": "^[a-z0-9A-Z]{1,15}$", - "validationMessage": "Only alphanumeric characters are allowed, and the value must be 1-15 characters long." - } - }, - { - "name": "dbEdition", - "type": "Microsoft.Common.DropDown", - "label": "Database Edition", - "defaultValue": "Basic", - "toolTip": "Edition of Database to use", - "constraints": { - "allowedValues": [ - { - "label": "Basic", - "value": "Basic" - }, - { - "label": "Standard", - "value": "Standard" - }, - { - "label": "Premium", - "value": "Premium" - } - ], - "required": true - }, - "visible": true - } - ] - }, - { - "name": "storageConfig", - "label": "Storage settings", - "subLabel": { - "preValidation": "Configure the infrastructure settings", - "postValidation": "Done" - }, - "bladeTitle": "Storage settings", - "elements": [ - { - "name": "storageAccountsType", - "type": "Microsoft.Common.DropDown", - "label": "Storage account type", - "defaultValue": "Standard_LRS", - "toolTip": "Storage account type", - "constraints": { - "allowedValues": [ - { - "label": "Standard_LRS", - "value": "Standard_LRS" - } - ], - "required": true - }, - "visible": true - } - ] - } - ], - "outputs": { - "clusterName": "[steps('clusterConfig').clusterName]", - "vmSku": "[steps('clusterConfig').vmSku]", - "location": "[location()]", - "nodeCount": "[steps('clusterConfig').nodeCount]", - "artifactoryVersion": "[steps('clusterConfig').artifactoryVersion]", - "masterKey": "[steps('clusterConfig').masterKey]", - "artifactoryLicense1": "[steps('clusterConfig').artifactoryLicense1]", - "artifactoryLicense2": "[steps('clusterConfig').artifactoryLicense2]", - "artifactoryLicense3": "[steps('clusterConfig').artifactoryLicense3]", - "artifactoryLicense4": "[steps('clusterConfig').artifactoryLicense4]", - "artifactoryLicense5": "[steps('clusterConfig').artifactoryLicense5]", - "certificate": "[steps('clusterConfig').certificate]", - "certificateKey": "[steps('clusterConfig').certificateKey]", - "certificateDomain": "[steps('clusterConfig').certificateDomain]", - "artifactoryServerName": "[steps('clusterConfig').artifactoryServerName]", - "extraJavaOptions": "[steps('clusterConfig').extraJavaOptions]", - "adminUsername": "[steps('vmCredentials').adminUsername]", - "adminPassword": "[steps('vmCredentials').adminPassword.password]", - "DB_Admin_User": "[steps('databaseConfig').dbAdminUsername]", - "DB_Admin_Password": "[steps('databaseConfig').dbAdminPassword]", - "DB_Name": "[steps('databaseConfig').dbName]", - "DB_Edition": "[steps('databaseConfig').dbEdition]", - "storageAccountType": "[steps('storageConfig').storageAccountsType]" - } - } -} \ No newline at end of file diff --git a/AzureResourceManager/MP_submission_7/mainTemplate.json b/AzureResourceManager/MP_submission_7/mainTemplate.json deleted file mode 100644 index 0aaab5d..0000000 --- a/AzureResourceManager/MP_submission_7/mainTemplate.json +++ /dev/null @@ -1,924 +0,0 @@ -{ - "$schema": "https://schema.management.azure.com/schemas/2015-01-01/deploymentTemplate.json#", - "contentVersion": "1.0.0.0", - "parameters": { - "vmSku": { - "type": "string", - "defaultValue": "Standard_D4s_v3", - "metadata": { - "description": "Size of VMs in the VM Scale Set." - } - }, - "clusterName": { - "type": "string", - "maxLength": 61, - "metadata": { - "description": "String used as a base for naming resources. Must be 3-61 characters in length and globally unique across Azure. A hash is prepended to this string for some resources, and resource-specific information is appended." - } - }, - "location": { - "type": "string", - "defaultValue": "[resourceGroup().location]", - "metadata": { - "description": "Location for the resources." - } - }, - "nodeCount": { - "type": "int", - "defaultValue": 2, - "minValue": 1, - "maxValue": 100, - "metadata": { - "description": "Number of VM instances (100 or less) for member artifactory nodes. Minimum 1 node." - } - }, - "artifactoryVersion": { - "type": "string", - "defaultValue": "7.4.3", - "allowedValues": [ - "6.6.0", - "6.6.1", - "6.7.0", - "6.8.0", - "6.11.3", - "6.15.0", - "0.16.0", - "0.17.0", - "6.18.0", - "7.2.1", - "0.3.2", - "7.4.3" - ], - "metadata": { - "description": "Artifactory-vm image version to deploy." - } - }, - "masterKey": { - "type": "securestring", - "maxLength": 64, - "metadata": { - "description": "Master key for Artifactory cluster. Generate master.key using command '$openssl rand -hex 16'" - } - }, - "adminUsername": { - "type": "string", - "metadata": { - "description": "Admin username on all VMs. Follow conventions for azure VM admin user name." - } - }, - "adminPassword": { - "type": "securestring", - "metadata": { - "description": "Admin password on all VMs. Follow conventions for azure VM admin password rules." - } - }, - "artifactoryLicense1": { - "type": "string", - "metadata": { - "description": "Artifactory Enterprise License. Providing one license is mandatory" - } - }, - "artifactoryLicense2": { - "type": "string", - "defaultValue": "", - "metadata": { - "description": "Artifactory Enterprise License" - } - }, - "artifactoryLicense3": { - "type": "string", - "defaultValue": "", - "metadata": { - "description": "Artifactory Enterprise License" - } - }, - "artifactoryLicense4": { - "type": "string", - "defaultValue": "", - "metadata": { - "description": "Artifactory Enterprise License" - } - }, - "artifactoryLicense5": { - "type": "string", - "defaultValue": "", - "metadata": { - "description": "Artifactory Enterprise License" - } - }, - "certificate": { - "type": "securestring", - "metadata": { - "description": "To use Artifactory as docker registry you need to provide wild card valid Certificate. Provide your SSL Certificate." - } - }, - "certificateKey": { - "type": "securestring", - "metadata": { - "description": "Provide your SSL Certificate key" - } - }, - "certificateDomain": { - "type": "string", - "minLength": 1, - "defaultValue": "artifactory", - "metadata": { - "description": "Provide your Certificate Domain Name. For e.g jfrog.team for certificate with *.jfrog.team" - } - }, - "artifactoryServerName": { - "type": "string", - "minLength": 1, - "defaultValue": "artifactory", - "metadata": { - "description": "Provide artifactory server name to be used in Nginx. e.g artifactory for artifactory.jfrog.team" - } - }, - "extraJavaOptions": { - "type": "string", - "minLength": 1, - "defaultValue": "-server -Xms2g -Xmx8g -Xss256k -XX:+UseG1GC -XX:OnOutOfMemoryError=\\\"kill -9 %p\\\"", - "metadata": { - "description": "Setting Java Memory Parameters for Artifactory. Learn about system requirements for Artifactory https://www.jfrog.com/confluence/display/RTF/System+Requirements#SystemRequirements-RecommendedHardware." - } - }, - "DB_Admin_User": { - "type": "string", - "minLength": 1, - "metadata": { - "description": "Database Admin user name" - } - }, - "DB_Admin_Password": { - "type": "securestring", - "minLength": 1, - "metadata": { - "description": "Database Admin password" - } - }, - "DB_Name": { - "type": "string", - "minLength": 1, - "metadata": { - "description": "Database name" - } - }, - "DB_Edition": { - "type": "string", - "minLength": 1, - "defaultValue": "Basic", - "allowedValues": [ - "Basic", - "Standard", - "Premium" - ], - "metadata": { - "description": "Database Edition" - } - }, - "storageAccountType": { - "type": "string", - "defaultValue": "Standard_LRS", - "allowedValues": [ - "Standard_LRS", - "Standard_GRS", - "Standard_ZRS" - ], - "metadata": { - "description": "Storage Account type" - } - }, - "_artifactsLocation": { - "type": "string", - "metadata": { - "description": "The base URI where artifacts required by this template are located. When the template is deployed using the accompanying scripts, a private location in the subscription will be used and this value will be automatically generated." - }, - "defaultValue": "[deployment().properties.templateLink.uri]" - }, - "_artifactsLocationSasToken": { - "type": "securestring", - "metadata": { - "description": "The sasToken required to access _artifactsLocation. When the template is deployed using the accompanying scripts, a sasToken will be automatically generated." - }, - "defaultValue": "" - } - }, - "variables": { - "namingInfix": "[toLower(substring(concat(parameters('clusterName'), uniqueString(resourceGroup().id)), 0, 9))]", - "addressPrefix": "10.0.0.0/16", - "subnetPrimaryPrefix": "10.0.1.0/24", - "subnetMemberPrefix": "10.0.2.0/24", - "virtualNetworkName": "[concat(variables('namingInfix'), 'vnet')]", - "subnetPrimaryName": "[concat(variables('namingInfix'), 'primarySubnet')]", - "subnetMemberName": "[concat(variables('namingInfix'), 'memberSubnet')]", - "scaleSetPrimaryName": "[concat(variables('namingInfix'), 'primaryScaleset')]", - "scaleSetMemberName": "[concat(variables('namingInfix'), 'memberScaleset')]", - "lbName": "[concat(variables('namingInfix'), 'lb')]", - "bepoolPrimaryName": "[concat(variables('lbName'), 'primaryBepool')]", - "bepoolMemberName": "[concat(variables('lbName'), 'memberBepool')]", - "fepoolPrimaryName": "[concat(variables('lbName'), 'primaryFepool')]", - "fepoolMemberName": "[concat(variables('lbName'), 'memberFepool')]", - "bepoolPrimaryID": "[resourceId('Microsoft.Network/loadBalancers/backendAddressPools', variables('lbName'), variables('bepoolPrimaryName'))]", - "bepoolMemberID": "[resourceId('Microsoft.Network/loadBalancers/backendAddressPools', variables('lbName'), variables('bepoolMemberName'))]", - "feIpConfigPrimaryName": "[concat(variables('fepoolPrimaryName'), 'primaryIpConfig')]", - "feIpConfigMemberName": "[concat(variables('fepoolMemberName'), 'memberIpConfig')]", - "feIpConfigPrimaryId": "[resourceId('Microsoft.Network/loadBalancers/frontendIpConfigurations', variables('lbName'), variables('feIpConfigPrimaryName'))]", - "feIpConfigMemberId": "[resourceId('Microsoft.Network/loadBalancers/frontendIpConfigurations', variables('lbName'), variables('feIpConfigMemberName'))]", - "pipPrimaryName": "[concat(variables('namingInfix'), 'primaryPip')]", - "pipMemberName": "[concat(variables('namingInfix'), 'memberPip')]", - "nicPrimaryName": "[concat(variables('namingInfix'), 'primaryNic')]", - "nicMemberName": "[concat(variables('namingInfix'), 'memberNic')]", - "natPoolPrimaryName": "[concat(variables('lbName'), 'primaryNatpool')]", - "natPoolMemberName": "[concat(variables('lbName'), 'memberNatpool')]", - "ipConfigName": "[concat(variables('namingInfix'), 'ipconfig')]", - "httpProbePrimaryName": "primaryHttpProbe", - "httpsProbePrimaryName": "primaryHttpsProbe", - "httpProbeMemberName": "memberHttpProbe", - "httpsProbeMemberName": "memberHttpsProbe", - "storageAccountName": "[concat(variables('namingInfix'), 'storage')]", - "vmStorageAccountContainerName": "filestore", - "azureSqlServerName": "[concat(variables('namingInfix'), 'sqlsrv')]", - "DB_Name": "[parameters('DB_Name')]", - "DB_Admin_User": "[parameters('DB_Admin_User')]", - "DB_Admin_Password": "[parameters('DB_Admin_Password')]", - "DB_Edition": "[parameters('DB_Edition')]", - "DB_Location": "[parameters('location')]", - "masterKey": "[parameters('masterKey')]", - "certificate": "[parameters('certificate')]", - "certificateKey": "[parameters('certificateKey')]", - "certificateDomain": "[parameters('certificateDomain')]", - "artifactoryServerName": "[parameters('artifactoryServerName')]", - "extraJavaOptions": "[parameters('extraJavaOptions')]", - "artifactoryLicense1": "[parameters('artifactoryLicense1')]", - "artifactoryLicense2": "[parameters('artifactoryLicense2')]", - "artifactoryLicense3": "[parameters('artifactoryLicense3')]", - "artifactoryLicense4": "[parameters('artifactoryLicense4')]", - "artifactoryLicense5": "[parameters('artifactoryLicense5')]", - "osType": { - "publisher": "jfrog", - "offer": "artifactory-vm", - "sku": "artifactory-vm", - "version": "[parameters('artifactoryVersion')]" - }, - "imageReference": "[variables('osType')]", - "dbTemplate": "azureDBDeploy.json", - "dbTemplateLocation": "[uri(parameters('_artifactsLocation'), concat('nested/', variables('dbTemplate'), parameters('_artifactsLocationSasToken')))]", - "nsgName": "[concat(variables('namingInfix'), 'nsg')]" - }, - "resources": [ - { - "apiVersion": "2019-05-01", - "name": "pid-04c1c376-5d4b-4771-9a7f-054f5910dcef", - "type": "Microsoft.Resources/deployments", - "properties": { - "mode": "Incremental", - "template": { - "$schema": "https://schema.management.azure.com/schemas/2015-01-01/deploymentTemplate.json#", - "contentVersion": "1.0.0.0", - "resources": [] - } - } - }, - { - "type": "Microsoft.Network/networkSecurityGroups", - "location": "[parameters('location')]", - "name": "[variables('nsgName')]", - "apiVersion": "2018-07-01", - "properties": { - "securityRules": [ - { - "name": "ssh-rule", - "properties": { - "description": "Allow SSH", - "protocol": "Tcp", - "sourcePortRange": "*", - "destinationPortRange": "22", - "sourceAddressPrefix": "Internet", - "destinationAddressPrefix": "*", - "access": "Allow", - "priority": 100, - "direction": "Inbound" - } - }, - { - "name": "http-artifactory-rule", - "properties": { - "description": "Allow HTTP", - "protocol": "Tcp", - "sourcePortRange": "*", - "destinationPortRange": "8081", - "sourceAddressPrefix": "Internet", - "destinationAddressPrefix": "*", - "access": "Allow", - "priority": 101, - "direction": "Inbound" - } - }, - { - "name": "http-nginx-rule", - "properties": { - "description": "Allow HTTP", - "protocol": "Tcp", - "sourcePortRange": "*", - "destinationPortRange": "80", - "sourceAddressPrefix": "Internet", - "destinationAddressPrefix": "*", - "access": "Allow", - "priority": 102, - "direction": "Inbound" - } - }, - { - "name": "https-nginx-rule", - "properties": { - "description": "Allow HTTP", - "protocol": "Tcp", - "sourcePortRange": "*", - "destinationPortRange": "443", - "sourceAddressPrefix": "Internet", - "destinationAddressPrefix": "*", - "access": "Allow", - "priority": 103, - "direction": "Inbound" - } - }, - { - "name": "membership-rule", - "properties": { - "description": "Allow HTTP", - "protocol": "Tcp", - "sourcePortRange": "*", - "destinationPortRange": "10001", - "sourceAddressPrefix": "Internet", - "destinationAddressPrefix": "*", - "access": "Allow", - "priority": 105, - "direction": "Inbound" - } - } - ] - } - }, - { - "type": "Microsoft.Network/virtualNetworks", - "name": "[variables('virtualNetworkName')]", - "location": "[parameters('location')]", - "apiVersion": "2018-07-01", - "dependsOn": [ - "[concat('Microsoft.Network/networkSecurityGroups/', variables('nsgName'))]" - ], - "properties": { - "addressSpace": { - "addressPrefixes": [ - "[variables('addressPrefix')]" - ] - }, - "subnets": [ - { - "name": "[variables('subnetPrimaryName')]", - "properties": { - "addressPrefix": "[variables('subnetPrimaryPrefix')]", - "networkSecurityGroup": { - "id": "[resourceId('Microsoft.Network/networkSecurityGroups', variables('nsgName'))]" - } - } - }, - { - "name": "[variables('subnetMemberName')]", - "properties": { - "addressPrefix": "[variables('subnetMemberPrefix')]", - "networkSecurityGroup": { - "id": "[resourceId('Microsoft.Network/networkSecurityGroups', variables('nsgName'))]" - } - } - } - ] - } - }, - { - "apiVersion": "2018-07-01", - "type": "Microsoft.Network/networkInterfaces", - "name": "[variables('nicPrimaryName')]", - "location": "[parameters('location')]", - "dependsOn": [ - "[concat('Microsoft.Network/publicIPAddresses/', variables('pipPrimaryName'))]", - "[concat('Microsoft.Network/virtualNetworks/', variables('virtualNetworkName'))]", - "[resourceId('Microsoft.Network/networkSecurityGroups', variables('nsgName'))]" - ], - "properties": { - "ipConfigurations": [ - { - "name": "ipconfig1", - "properties": { - "privateIPAllocationMethod": "Dynamic", - "subnet": { - "id": "[resourceId('Microsoft.Network/virtualNetworks/subnets', variables('virtualNetworkName'), variables('subnetPrimaryName'))]" - } - } - } - ], - "networkSecurityGroup": { - "id": "[resourceId('Microsoft.Network/networkSecurityGroups', variables('nsgName'))]" - } - } - }, - { - "apiVersion": "2018-07-01", - "type": "Microsoft.Network/networkInterfaces", - "name": "[variables('nicMemberName')]", - "location": "[parameters('location')]", - "dependsOn": [ - "[concat('Microsoft.Network/publicIPAddresses/', variables('pipMemberName'))]", - "[concat('Microsoft.Network/virtualNetworks/', variables('virtualNetworkName'))]", - "[resourceId('Microsoft.Network/networkSecurityGroups', variables('nsgName'))]" - ], - "properties": { - "ipConfigurations": [ - { - "name": "ipconfig1", - "properties": { - "privateIPAllocationMethod": "Dynamic", - "subnet": { - "id": "[resourceId('Microsoft.Network/virtualNetworks/subnets', variables('virtualNetworkName'), variables('subnetMemberName'))]" - } - } - } - ], - "networkSecurityGroup": { - "id": "[resourceId('Microsoft.Network/networkSecurityGroups', variables('nsgName'))]" - } - } - }, - { - "type": "Microsoft.Network/publicIPAddresses", - "name": "[variables('pipPrimaryName')]", - "location": "[parameters('location')]", - "sku": { - "name": "Standard" - }, - "apiVersion": "2018-07-01", - "properties": { - "publicIPAllocationMethod": "Static", - "dnsSettings": { - "domainNameLabel": "[variables('namingInfix')]" - } - } - }, - { - "type": "Microsoft.Network/publicIPAddresses", - "name": "[variables('pipMemberName')]", - "location": "[parameters('location')]", - "sku": { - "name": "Standard" - }, - "apiVersion": "2018-07-01", - "properties": { - "publicIPAllocationMethod": "Static", - "dnsSettings": { - "domainNameLabel": "[concat(variables('namingInfix'),'2')]" - } - } - }, - { - "type": "Microsoft.Network/loadBalancers", - "name": "[variables('lbName')]", - "location": "[parameters('location')]", - "apiVersion": "2018-07-01", - "sku": { - "name": "Standard" - }, - "dependsOn": [ - "[concat('Microsoft.Network/publicIPAddresses/', variables('pipPrimaryName'))]", - "[concat('Microsoft.Network/publicIPAddresses/', variables('pipMemberName'))]" - ], - "tags":{ - "displayName": "Load Balancer" - }, - "properties": { - "frontendIPConfigurations": [ - { - "name": "[variables('feIpConfigPrimaryName')]", - "properties": { - "publicIPAddress": { - "id": "[resourceId('Microsoft.Network/publicIPAddresses', variables('pipPrimaryName'))]" - } - } - }, - { - "name": "[variables('feIpConfigMemberName')]", - "properties": { - "publicIPAddress": { - "id": "[resourceId('Microsoft.Network/publicIPAddresses', variables('pipMemberName'))]" - } - } - } - ], - "backendAddressPools": [ - { - "name": "[variables('bepoolPrimaryName')]" - }, - { - "name": "[variables('bepoolMemberName')]" - } - ], - "inboundNatPools": [ - { - "name": "[variables('natPoolPrimaryName')]", - "properties": { - "frontendIPConfiguration": { - "id": "[variables('feIpConfigPrimaryId')]" - }, - "protocol": "tcp", - "frontendPortRangeStart": 10022, - "frontendPortRangeEnd": 11022, - "backendPort": 22 - } - }, - { - "name": "[variables('natPoolMemberName')]", - "properties": { - "frontendIPConfiguration": { - "id": "[variables('feIpConfigMemberId')]" - }, - "protocol": "tcp", - "frontendPortRangeStart": 20022, - "frontendPortRangeEnd": 21022, - "backendPort": 22 - } - } - ], - "loadBalancingRules": [ - { - "name": "HTTPRulePrimary", - "properties": { - "loadDistribution": "Default", - "frontendIPConfiguration": { - "id": "[variables('feIpConfigPrimaryId')]" - }, - "backendAddressPool": { - "id": "[variables('bepoolPrimaryID')]" - }, - "protocol": "Tcp", - "frontendPort": 80, - "backendPort": 80, - "enableFloatingIP": false, - "idleTimeoutInMinutes": 5, - "probe": { - "id": "[resourceId('Microsoft.Network/loadBalancers/probes', variables('lbName'), variables('httpProbePrimaryName'))]" - } - } - }, - { - "name": "HTTPSRulePrimary", - "properties": { - "loadDistribution": "Default", - "frontendIPConfiguration": { - "id": "[variables('feIpConfigPrimaryId')]" - }, - "backendAddressPool": { - "id": "[variables('bepoolPrimaryID')]" - }, - "protocol": "Tcp", - "frontendPort": 443, - "backendPort": 443, - "enableFloatingIP": false, - "idleTimeoutInMinutes": 5, - "probe": { - "id": "[resourceId('Microsoft.Network/loadBalancers/probes', variables('lbName'), variables('httpsProbePrimaryName'))]" - } - } - }, - { - "name": "HTTPRuleMember", - "properties": { - "loadDistribution": "Default", - "frontendIPConfiguration": { - "id": "[variables('feIpConfigMemberId')]" - }, - "backendAddressPool": { - "id": "[variables('bepoolMemberID')]" - }, - "protocol": "Tcp", - "frontendPort": 80, - "backendPort": 80, - "enableFloatingIP": false, - "idleTimeoutInMinutes": 5, - "probe": { - "id": "[resourceId('Microsoft.Network/loadBalancers/probes', variables('lbName'), variables('httpProbeMemberName'))]" - } - } - }, - { - "name": "HTTPSRuleMember", - "properties": { - "loadDistribution": "Default", - "frontendIPConfiguration": { - "id": "[variables('feIpConfigMemberId')]" - }, - "backendAddressPool": { - "id": "[variables('bepoolMemberID')]" - }, - "protocol": "Tcp", - "frontendPort": 443, - "backendPort": 443, - "enableFloatingIP": false, - "idleTimeoutInMinutes": 5, - "probe": { - "id": "[resourceId('Microsoft.Network/loadBalancers/probes', variables('lbName'), variables('httpsProbeMemberName'))]" - } - } - } - ], - "probes": [ - { - "name": "[variables('httpProbePrimaryName')]", - "properties": { - "protocol": "Http", - "requestPath": "/artifactory/api/system/ping", - "port": 80, - "intervalInSeconds": 60, - "numberOfProbes": 5 - } - }, - { - "name": "[variables('httpsProbePrimaryName')]", - "properties": { - "protocol": "Tcp", - "port": 443, - "intervalInSeconds": 60, - "numberOfProbes": 5 - } - }, - { - "name": "[variables('httpProbeMemberName')]", - "properties": { - "protocol": "Http", - "requestPath": "/artifactory/api/system/ping", - "port": 80, - "intervalInSeconds": 60, - "numberOfProbes": 5 - } - }, - { - "name": "[variables('httpsProbeMemberName')]", - "properties": { - "protocol": "Tcp", - "port": 443, - "intervalInSeconds": 60, - "numberOfProbes": 5 - } - } - ] - } - }, - { - "apiVersion": "2018-07-01", - "type": "Microsoft.Storage/storageAccounts", - "name": "[variables('storageAccountName')]", - "location": "[parameters('location')]", - "sku": { - "name": "[parameters('storageAccountType')]" - }, - "tags":{ - "displayName": "Artifactory Storage Account" - }, - "kind": "Storage", - "properties": {} - }, - { - "type": "Microsoft.Resources/deployments", - "name": "deploySQLDB", - "apiVersion": "2018-07-01", - "properties": { - "mode": "Incremental", - "templateLink": { - "uri": "[variables('dbTemplateLocation')]", - "contentVersion": "1.0.0.0" - }, - "parameters": { - "db_user": { - "value": "[parameters('DB_Admin_User')]" - }, - "db_password": { - "value": "[parameters('DB_Admin_Password')]" - }, - "db_server": { - "value": "[variables('azureSqlServerName')]" - }, - "db_name": { - "value": "[parameters('DB_Name')]" - }, - "db_edition": { - "value": "[variables('DB_Edition')]" - }, - "db_location": { - "value": "[variables('DB_Location')]" - } - } - } - }, - { - "type": "Microsoft.Compute/virtualMachineScaleSets", - "name": "[variables('scaleSetPrimaryName')]", - "location": "[parameters('location')]", - "apiVersion": "2018-10-01", - "dependsOn": [ - "[concat('Microsoft.Network/loadBalancers/', variables('lbName'))]", - "[concat('Microsoft.Network/virtualNetworks/', variables('virtualNetworkName'))]", - "[concat('Microsoft.Resources/deployments/', 'deploySQLDB')]", - "[concat('Microsoft.Storage/storageAccounts/', variables('storageAccountName'))]" - ], - "plan": { - "name": "artifactory-vm", - "publisher": "jfrog", - "product": "artifactory-vm" - }, - "sku": { - "name": "[parameters('vmSku')]", - "tier": "Standard", - "capacity": "1" - }, - "properties": { - "singlePlacementGroup": true, - "overprovision": "false", - "upgradePolicy": { - "mode": "Manual" - }, - "virtualMachineProfile": { - "storageProfile": { - "osDisk": { - "caching": "ReadWrite", - "diskSizeGB": "250", - "createOption": "FromImage" - }, - "imageReference": "[variables('imageReference')]" - }, - "osProfile": { - "computerNamePrefix": "[variables('namingInfix')]", - "adminUsername": "[parameters('adminUsername')]", - "adminPassword": "[parameters('adminPassword')]", - "customData": "[base64(concat('#INSTALL SCRIPT INPUTS\nARTIFACTORY_VERSION=', parameters('artifactoryVersion'),'\nCERTIFICATE_KEY=',variables('certificateKey'),'\nCERTIFICATE=', variables('certificate'),'\nCERTIFICATE_DOMAIN=',variables('certificateDomain'),'\nARTIFACTORY_SERVER_NAME=',variables('artifactoryServerName'),'\nEXTRA_JAVA_OPTS=',variables('extraJavaOptions'),'\nJDBC_STR=',reference('Microsoft.Resources/deployments/deploySQLDB').outputs.jdbcConnString.value,'\nDB_NAME=',variables('DB_Name'),'\nDB_ADMIN_USER=',variables('DB_Admin_User'),'\nDB_ADMIN_PASSWD=',variables('DB_Admin_Password'),'\nSTO_ACT_NAME=',variables('storageAccountName'),'\nSTO_ACT_ENDPOINT=',reference(resourceId('Microsoft.Storage/storageAccounts/', variables('storageAccountName'))).primaryEndpoints.blob,'\nSTO_CTR_NAME=',variables('vmStorageAccountContainerName'),'\nSTO_ACT_KEY=',listKeys(resourceId('Microsoft.Storage/storageAccounts', variables('storageAccountName')), '2018-07-01').keys[0].value,'\nMASTER_KEY=',variables('masterKey'),'\nIS_PRIMARY=','true','\nLICENSE1=',variables('artifactoryLicense1'),'\nLICENSE2=',variables('artifactoryLicense2'),'\nLICENSE3=',variables('artifactoryLicense3'),'\nLICENSE4=',variables('artifactoryLicense4'),'\nLICENSE5=',variables('artifactoryLicense5'),'\n'))]" - }, - "networkProfile": { - "networkInterfaceConfigurations": [ - { - "name": "[variables('nicPrimaryName')]", - "properties": { - "primary": true, - "ipConfigurations": [ - { - "name": "[concat(variables('ipConfigName'),'1')]", - "properties": { - "subnet": { - "id": "[resourceId('Microsoft.Network/virtualNetworks/subnets', variables('virtualNetworkName'), variables('subnetPrimaryName'))]" - }, - "loadBalancerBackendAddressPools": [ - { - "id": "[resourceId('Microsoft.Network/loadBalancers/backendAddressPools', variables('lbName'), variables('bePoolPrimaryName'))]" - } - ], - "loadBalancerInboundNatPools": [ - { - "id": "[resourceId('Microsoft.Network/loadBalancers/inboundNatPools', variables('lbName'), variables('natPoolPrimaryName'))]" - } - ] - } - } - ] - } - } - ] - }, - "extensionProfile": { - "extensions": [ - { - "name": "extension1", - "properties": { - "publisher": "Microsoft.Azure.Extensions", - "type": "CustomScript", - "typeHandlerVersion": "2.0", - "autoUpgradeMinorVersion": false, - "settings": { - "fileUris": [ - "[uri(parameters('_artifactsLocation'), concat('scripts/install_artifactory.sh', parameters('_artifactsLocationSasToken')))]", - "[uri(parameters('_artifactsLocation'), concat('scripts/install_artifactory7.sh', parameters('_artifactsLocationSasToken')))]", - "[uri(parameters('_artifactsLocation'), concat('scripts/version_selector.sh', parameters('_artifactsLocationSasToken')))]" - ] - }, - "protectedSettings": { - "commandToExecute": "bash version_selector.sh && ls -al && pwd >> /var/lib/cloud/instance/user-data.txt" - } - } - } - ] - } - } - } - }, - { - "type": "Microsoft.Compute/virtualMachineScaleSets", - "name": "[variables('scaleSetMemberName')]", - "location": "[parameters('location')]", - "apiVersion": "2018-10-01", - "dependsOn": [ - "[concat('Microsoft.Network/loadBalancers/', variables('lbName'))]", - "[concat('Microsoft.Network/virtualNetworks/', variables('virtualNetworkName'))]", - "[concat('Microsoft.Compute/virtualMachineScaleSets/', variables('scaleSetPrimaryName'))]", - "[concat('Microsoft.Resources/deployments/', 'deploySQLDB')]", - "[concat('Microsoft.Storage/storageAccounts/', variables('storageAccountName'))]" - ], - "plan": { - "name": "artifactory-vm", - "publisher": "jfrog", - "product": "artifactory-vm" - }, - "sku": { - "name": "[parameters('vmSku')]", - "tier": "Standard", - "capacity": "[parameters('nodeCount')]" - }, - "properties": { - "singlePlacementGroup": true, - "overprovision": "false", - "upgradePolicy": { - "mode": "Manual" - }, - "virtualMachineProfile": { - "storageProfile": { - "osDisk": { - "caching": "ReadWrite", - "diskSizeGB": "250", - "createOption": "FromImage" - }, - "imageReference": "[variables('imageReference')]" - }, - "osProfile": { - "computerNamePrefix": "[variables('namingInfix')]", - "adminUsername": "[parameters('adminUsername')]", - "adminPassword": "[parameters('adminPassword')]", - "customData": "[base64(concat('#INSTALL SCRIPT INPUTS\nARTIFACTORY_VERSION=', parameters('artifactoryVersion'),'\nCERTIFICATE_KEY=',parameters('certificateKey'),'\nCERTIFICATE=', parameters('certificate'),'\nCERTIFICATE_DOMAIN=',parameters('certificateDomain'),'\nARTIFACTORY_SERVER_NAME=',parameters('artifactoryServerName'),'\nEXTRA_JAVA_OPTS=',parameters('extraJavaOptions'),'\nJDBC_STR=',reference('Microsoft.Resources/deployments/deploySQLDB').outputs.jdbcConnString.value,'\nDB_NAME=',variables('DB_Name'),'\nDB_ADMIN_USER=',variables('DB_Admin_User'),'\nDB_ADMIN_PASSWD=',variables('DB_Admin_Password'),'\nSTO_ACT_NAME=',variables('storageAccountName'),'\nSTO_ACT_ENDPOINT=',reference(resourceId('Microsoft.Storage/storageAccounts/', variables('storageAccountName'))).primaryEndpoints.blob,'\nSTO_CTR_NAME=',variables('vmStorageAccountContainerName'),'\nSTO_ACT_KEY=',listKeys(resourceId('Microsoft.Storage/storageAccounts', variables('storageAccountName')), '2018-07-01').keys[0].value,'\nMASTER_KEY=',variables('masterKey'),'\nIS_PRIMARY=','false','\nLICENSE1=',variables('artifactoryLicense1'),'\nLICENSE2=',variables('artifactoryLicense2'),'\nLICENSE3=',variables('artifactoryLicense3'),'\nLICENSE4=',variables('artifactoryLicense4'),'\nLICENSE5=',variables('artifactoryLicense5'),'\n'))]" - }, - "networkProfile": { - "networkInterfaceConfigurations": [ - { - "name": "[variables('nicMemberName')]", - "properties": { - "primary": true, - "ipConfigurations": [ - { - "name": "[concat(variables('ipConfigName'),'1')]", - "properties": { - "subnet": { - "id": "[resourceId('Microsoft.Network/virtualNetworks/subnets', variables('virtualNetworkName'), variables('subnetMemberName'))]" - }, - "loadBalancerBackendAddressPools": [ - { - "id": "[resourceId('Microsoft.Network/loadBalancers/backendAddressPools', variables('lbName'), variables('bePoolMemberName'))]" - } - ], - "loadBalancerInboundNatPools": [ - { - "id": "[resourceId('Microsoft.Network/loadBalancers/inboundNatPools', variables('lbName'), variables('natPoolMemberName'))]" - } - ] - } - } - ] - } - } - ] - }, - "extensionProfile": { - "extensions": [ - { - "name": "extension1", - "properties": { - "publisher": "Microsoft.Azure.Extensions", - "type": "CustomScript", - "typeHandlerVersion": "2.0", - "autoUpgradeMinorVersion": false, - "settings": { - "fileUris": [ - "[uri(parameters('_artifactsLocation'), concat('scripts/install_artifactory.sh', parameters('_artifactsLocationSasToken')))]", - "[uri(parameters('_artifactsLocation'), concat('scripts/install_artifactory7.sh', parameters('_artifactsLocationSasToken')))]", - "[uri(parameters('_artifactsLocation'), concat('scripts/version_selector.sh', parameters('_artifactsLocationSasToken')))]" - ] - }, - "protectedSettings": { - "commandToExecute": "bash version_selector.sh && ls -al && pwd >> /var/lib/cloud/instance/user-data.txt" - } - } - } - ] - } - } - } - } - ], - "outputs": { - "fqdn": { - "value": "[reference(resourceId('Microsoft.Network/publicIPAddresses',variables('pipMemberName')),'2018-07-01').dnsSettings.fqdn]", - "type": "string" - } - } -} \ No newline at end of file diff --git a/AzureResourceManager/MP_submission_7/nested/azureDBDeploy.json b/AzureResourceManager/MP_submission_7/nested/azureDBDeploy.json deleted file mode 100644 index 70c31a5..0000000 --- a/AzureResourceManager/MP_submission_7/nested/azureDBDeploy.json +++ /dev/null @@ -1,96 +0,0 @@ -{ - "$schema": "https://schema.management.azure.com/schemas/2015-01-01/deploymentTemplate.json#", - "contentVersion": "1.0.0.0", - "parameters": { - "db_user": { - "type": "string", - "defaultValue": "artifactory", - "minLength": 1 - }, - "db_password": { - "type": "securestring" - }, - "db_server": { - "type": "string", - "defaultValue": "artmssqlsrv", - "minLength": 1 - }, - "db_name": { - "type": "string", - "defaultValue": "artdb", - "minLength": 1 - }, - "db_location": { - "type": "string", - "defaultValue": "" - }, - "db_edition": { - "type": "string", - "allowedValues": [ - "Basic", - "Standard", - "Premium" - ] - } - }, - "variables": { - "rtdbCollation": "Latin1_General_100_CS_AS", - "db_location": "[parameters('db_location')]" - }, - "resources": [ - { - "name": "[parameters('db_server')]", - "type": "Microsoft.Sql/servers", - "kind": "v12.0", - "location": "[variables('db_location')]", - "apiVersion": "2019-06-01-preview", - "tags": { - "displayName": "artifactoryDB" - }, - "properties": { - "administratorLogin": "[parameters('db_user')]", - "administratorLoginPassword": "[parameters('db_password')]", - "version": "12.0" - }, - "resources": [ - { - "name": "[uniqueString(parameters('db_server'), 'AllowAllWindowsAzureIps' )]", - "type": "firewallrules", - "location": "[variables('db_location')]", - "apiVersion": "2019-06-01-preview", - "dependsOn": [ - "[concat('Microsoft.Sql/servers/', parameters('db_server'))]" - ], - "properties": { - "startIpAddress": "0.0.0.0", - "endIpAddress": "0.0.0.0" - } - }, - { - "name": "[parameters('db_name')]", - "type": "databases", - "kind": "v12.0,user", - "location": "[variables('db_location')]", - "apiVersion": "2019-06-01-preview", - "dependsOn": [ - "[parameters('db_server')]" - ], - "tags": { - "displayName": "artifactoryDB" - }, - "properties": { - "edition": "[parameters('db_edition')]", - "maxSizeBytes": "1073741824", - "collation": "[variables('rtdbCollation')]" - } - } - ] - } - ], - "outputs": { - "jdbcConnString": { - "type": "string", - "value": "[concat('jdbc:sqlserver://', reference(concat('Microsoft.Sql/servers/', parameters('db_server'))).fullyQualifiedDomainName, ':1433')]" - } - } -} diff --git a/AzureResourceManager/MP_submission_7/scripts/install_artifactory.sh b/AzureResourceManager/MP_submission_7/scripts/install_artifactory.sh deleted file mode 100644 index 12238a9..0000000 --- a/AzureResourceManager/MP_submission_7/scripts/install_artifactory.sh +++ /dev/null @@ -1,214 +0,0 @@ -#!/bin/bash -DB_URL=$(cat /var/lib/cloud/instance/user-data.txt | grep "^JDBC_STR" | sed "s/JDBC_STR=//") -DB_NAME=$(cat /var/lib/cloud/instance/user-data.txt | grep "^DB_NAME=" | sed "s/DB_NAME=//") -DB_USER=$(cat /var/lib/cloud/instance/user-data.txt | grep "^DB_ADMIN_USER=" | sed "s/DB_ADMIN_USER=//") -DB_PASSWORD=$(cat /var/lib/cloud/instance/user-data.txt | grep "^DB_ADMIN_PASSWD=" | sed "s/DB_ADMIN_PASSWD=//") -STORAGE_ACCT=$(cat /var/lib/cloud/instance/user-data.txt | grep "^STO_ACT_NAME=" | sed "s/STO_ACT_NAME=//") -STORAGE_CONTAINER=$(cat /var/lib/cloud/instance/user-data.txt | grep "^STO_CTR_NAME=" | sed "s/STO_CTR_NAME=//") -STORAGE_ACCT_KEY=$(cat /var/lib/cloud/instance/user-data.txt | grep "^STO_ACT_KEY=" | sed "s/STO_ACT_KEY=//") -ARTIFACTORY_VERSION=$(cat /var/lib/cloud/instance/user-data.txt | grep "^ARTIFACTORY_VERSION=" | sed "s/ARTIFACTORY_VERSION=//") -MASTER_KEY=$(cat /var/lib/cloud/instance/user-data.txt | grep "^MASTER_KEY=" | sed "s/MASTER_KEY=//") -IS_PRIMARY=$(cat /var/lib/cloud/instance/user-data.txt | grep "^IS_PRIMARY=" | sed "s/IS_PRIMARY=//") -ARTIFACTORY_LICENSE_1=$(cat /var/lib/cloud/instance/user-data.txt | grep "^LICENSE1=" | sed "s/LICENSE1=//") -ARTIFACTORY_LICENSE_2=$(cat /var/lib/cloud/instance/user-data.txt | grep "^LICENSE2=" | sed "s/LICENSE2=//") -ARTIFACTORY_LICENSE_3=$(cat /var/lib/cloud/instance/user-data.txt | grep "^LICENSE3=" | sed "s/LICENSE3=//") -ARTIFACTORY_LICENSE_4=$(cat /var/lib/cloud/instance/user-data.txt | grep "^LICENSE4=" | sed "s/LICENSE4=//") -ARTIFACTORY_LICENSE_5=$(cat /var/lib/cloud/instance/user-data.txt | grep "^LICENSE5=" | sed "s/LICENSE5=//") - -UBUNTU_CODENAME=$(cat /etc/lsb-release | grep "^DISTRIB_CODENAME=" | sed "s/DISTRIB_CODENAME=//") - -export DEBIAN_FRONTEND=noninteractive - -#Generate Self-Signed Cert -mkdir -p /etc/pki/tls/private/ /etc/pki/tls/certs/ -openssl req -nodes -x509 -newkey rsa:4096 -keyout /etc/pki/tls/private/example.key -out /etc/pki/tls/certs/example.pem -days 356 -subj "/C=US/ST=California/L=SantaClara/O=IT/CN=*.localhost" - -CERTIFICATE_DOMAIN=$(cat /var/lib/cloud/instance/user-data.txt | grep "^CERTIFICATE_DOMAIN=" | sed "s/CERTIFICATE_DOMAIN=//") -[ -z "$CERTIFICATE_DOMAIN" ] && CERTIFICATE_DOMAIN=artifactory - -ARTIFACTORY_SERVER_NAME=$(cat /var/lib/cloud/instance/user-data.txt | grep "^ARTIFACTORY_SERVER_NAME=" | sed "s/ARTIFACTORY_SERVER_NAME=//") -[ -z "$ARTIFACTORY_SERVER_NAME" ] && ARTIFACTORY_SERVER_NAME=artifactory - -#Configuring nginx -rm /etc/nginx/sites-enabled/default - -cat </etc/nginx/nginx.conf - #user nobody; - worker_processes 1; - error_log /var/log/nginx/error.log info; - #pid logs/nginx.pid; - events { - worker_connections 1024; - } - - http { - include mime.types; - variables_hash_max_size 1024; - variables_hash_bucket_size 64; - server_names_hash_max_size 4096; - server_names_hash_bucket_size 128; - types_hash_max_size 2048; - types_hash_bucket_size 64; - proxy_read_timeout 2400s; - client_header_timeout 2400s; - client_body_timeout 2400s; - proxy_connect_timeout 75s; - proxy_send_timeout 2400s; - proxy_buffer_size 32k; - proxy_buffers 40 32k; - proxy_busy_buffers_size 64k; - proxy_temp_file_write_size 250m; - proxy_http_version 1.1; - client_body_buffer_size 128k; - - include /etc/nginx/conf.d/*.conf; - default_type application/octet-stream; - log_format main '$remote_addr - $remote_user [$time_local] "$request" ' - '$status $body_bytes_sent "$http_referer" ' - '"$http_user_agent" "$http_x_forwarded_for"'; - access_log /var/log/nginx/access.log main; - sendfile on; - #tcp_nopush on; - #keepalive_timeout 0; - keepalive_timeout 65; - } -EOF - -cat </etc/nginx/conf.d/artifactory.conf -ssl_certificate /etc/pki/tls/certs/cert.pem; -ssl_certificate_key /etc/pki/tls/private/cert.key; -ssl_session_cache shared:SSL:1m; -ssl_prefer_server_ciphers on; -## server configuration -server { - listen 443 ssl; - listen 80 ; - server_name ~(?.+)\\.${CERTIFICATE_DOMAIN} artifactory ${ARTIFACTORY_SERVER_NAME}.${CERTIFICATE_DOMAIN}; - if (\$http_x_forwarded_proto = '') { - set \$http_x_forwarded_proto \$scheme; - } - ## Application specific logs - ## access_log /var/log/nginx/artifactory-access.log timing; - ## error_log /var/log/nginx/artifactory-error.log; - rewrite ^/$ /artifactory/webapp/ redirect; - rewrite ^/artifactory/?(/webapp)?$ /artifactory/webapp/ redirect; - rewrite ^/(v1|v2)/(.*) /artifactory/api/docker/\$repo/\$1/\$2; - chunked_transfer_encoding on; - client_max_body_size 0; - location /artifactory/ { - proxy_read_timeout 2400; - proxy_pass_header Server; - proxy_cookie_path ~*^/.* /; - proxy_pass http://127.0.0.1:8081/artifactory/; - proxy_set_header X-Artifactory-Override-Base-Url - \$http_x_forwarded_proto://\$host:\$server_port/artifactory; - proxy_set_header X-Forwarded-Port \$server_port; - proxy_set_header X-Forwarded-Proto \$http_x_forwarded_proto; - proxy_set_header Host \$http_host; - proxy_set_header X-Forwarded-For \$proxy_add_x_forwarded_for; - } -} -EOF - -cat </var/opt/jfrog/artifactory/etc/artifactory.cluster.license -${ARTIFACTORY_LICENSE_1} - -${ARTIFACTORY_LICENSE_2} - -${ARTIFACTORY_LICENSE_3} - -${ARTIFACTORY_LICENSE_4} - -${ARTIFACTORY_LICENSE_5} -EOF - -cat </var/opt/jfrog/artifactory/etc/ha-node.properties -node.id=art1 -artifactory.ha.data.dir=/var/opt/jfrog/artifactory/data -context.url=http://127.0.0.1:8081/artifactory -membership.port=10001 -hazelcast.interface=172.25.0.3 -primary=${IS_PRIMARY} -EOF - -cat </var/opt/jfrog/artifactory/etc/db.properties -type=mssql -driver=com.microsoft.sqlserver.jdbc.SQLServerDriver -url=${DB_URL};databaseName=${DB_NAME};sendStringParametersAsUnicode=false;applicationName=Artifactory Binary Repository -username=${DB_USER} -password=${DB_PASSWORD} -EOF - -mkdir -p /var/opt/jfrog/artifactory/etc/security - -cat </var/opt/jfrog/artifactory/etc/security/master.key -${MASTER_KEY} -EOF - -cat </var/opt/jfrog/artifactory/etc/binarystore.xml - - - - - - - - - - - - - - - - - crossNetworkStrategy - crossNetworkStrategy - 2 - 1 - - - - - remote - - - - local - - - - - ${STORAGE_ACCT} - ${STORAGE_ACCT_KEY} - https://${STORAGE_ACCT}.blob.core.windows.net/ - ${STORAGE_CONTAINER} - - -EOF - - -HOSTNAME=$(hostname -i) -sed -i -e "s/art1/art-$(date +%s$RANDOM)/" /var/opt/jfrog/artifactory/etc/ha-node.properties -sed -i -e "s/127.0.0.1/$HOSTNAME/" /var/opt/jfrog/artifactory/etc/ha-node.properties -sed -i -e "s/172.25.0.3/$HOSTNAME/" /var/opt/jfrog/artifactory/etc/ha-node.properties - -cat /var/lib/cloud/instance/user-data.txt | grep "^CERTIFICATE=" | sed "s/CERTIFICATE=//" > /tmp/temp.pem -cat /tmp/temp.pem | sed 's/CERTIFICATE----- /&\n/g' | sed 's/ -----END/\n-----END/g' | awk '{if($0 ~ /----/) {print;} else { gsub(/ /,"\n");print;}}' > /etc/pki/tls/certs/cert.pem -rm /tmp/temp.pem - -cat /var/lib/cloud/instance/user-data.txt | grep "^CERTIFICATE_KEY=" | sed "s/CERTIFICATE_KEY=//" > /tmp/temp.key -cat /tmp/temp.key | sed 's/KEY----- /&\n/' | sed 's/ -----END/\n-----END/' | awk '{if($0 ~ /----/) {print;} else { gsub(/ /,"\n");print;}}' > /etc/pki/tls/private/cert.key -rm /tmp/temp.key - -EXTRA_JAVA_OPTS=$(cat /var/lib/cloud/instance/user-data.txt | grep "^EXTRA_JAVA_OPTS=" | sed "s/EXTRA_JAVA_OPTS=//") -[ -z "$EXTRA_JAVA_OPTS" ] && EXTRA_JAVA_OPTS='-server -Xms2g -Xmx6g -Xss256k -XX:+UseG1GC -XX:OnOutOfMemoryError="kill -9 %p"' -echo "export JAVA_OPTIONS=\"${EXTRA_JAVA_OPTS}\"" >> /var/opt/jfrog/artifactory/etc/default -chown artifactory:artifactory -R /var/opt/jfrog/artifactory/* && chown artifactory:artifactory -R /var/opt/jfrog/artifactory/etc/security && chown artifactory:artifactory -R /var/opt/jfrog/artifactory/etc/* - -# start Artifactory -sleep $((RANDOM % 120)) -service artifactory start -service nginx start -nginx -s reload -echo "INFO: Artifactory installation completed." diff --git a/AzureResourceManager/MP_submission_7/scripts/install_artifactory7.sh b/AzureResourceManager/MP_submission_7/scripts/install_artifactory7.sh deleted file mode 100644 index 438ea1f..0000000 --- a/AzureResourceManager/MP_submission_7/scripts/install_artifactory7.sh +++ /dev/null @@ -1,202 +0,0 @@ -#!/bin/bash -DB_URL=$(cat /var/lib/cloud/instance/user-data.txt | grep "^JDBC_STR" | sed "s/JDBC_STR=//") -DB_NAME=$(cat /var/lib/cloud/instance/user-data.txt | grep "^DB_NAME=" | sed "s/DB_NAME=//") -DB_USER=$(cat /var/lib/cloud/instance/user-data.txt | grep "^DB_ADMIN_USER=" | sed "s/DB_ADMIN_USER=//") -DB_PASSWORD=$(cat /var/lib/cloud/instance/user-data.txt | grep "^DB_ADMIN_PASSWD=" | sed "s/DB_ADMIN_PASSWD=//") -STORAGE_ACCT=$(cat /var/lib/cloud/instance/user-data.txt | grep "^STO_ACT_NAME=" | sed "s/STO_ACT_NAME=//") -STORAGE_CONTAINER=$(cat /var/lib/cloud/instance/user-data.txt | grep "^STO_CTR_NAME=" | sed "s/STO_CTR_NAME=//") -STORAGE_ACCT_KEY=$(cat /var/lib/cloud/instance/user-data.txt | grep "^STO_ACT_KEY=" | sed "s/STO_ACT_KEY=//") -ARTIFACTORY_VERSION=$(cat /var/lib/cloud/instance/user-data.txt | grep "^ARTIFACTORY_VERSION=" | sed "s/ARTIFACTORY_VERSION=//") -MASTER_KEY=$(cat /var/lib/cloud/instance/user-data.txt | grep "^MASTER_KEY=" | sed "s/MASTER_KEY=//") -JOIN_KEY=$(cat /var/lib/cloud/instance/user-data.txt | grep "^JOIN_KEY=" | sed "s/JOIN_KEY=//") -IS_PRIMARY=$(cat /var/lib/cloud/instance/user-data.txt | grep "^IS_PRIMARY=" | sed "s/IS_PRIMARY=//") -ARTIFACTORY_LICENSE_1=$(cat /var/lib/cloud/instance/user-data.txt | grep "^LICENSE1=" | sed "s/LICENSE1=//") -ARTIFACTORY_LICENSE_2=$(cat /var/lib/cloud/instance/user-data.txt | grep "^LICENSE2=" | sed "s/LICENSE2=//") -ARTIFACTORY_LICENSE_3=$(cat /var/lib/cloud/instance/user-data.txt | grep "^LICENSE3=" | sed "s/LICENSE3=//") -ARTIFACTORY_LICENSE_4=$(cat /var/lib/cloud/instance/user-data.txt | grep "^LICENSE4=" | sed "s/LICENSE4=//") -ARTIFACTORY_LICENSE_5=$(cat /var/lib/cloud/instance/user-data.txt | grep "^LICENSE5=" | sed "s/LICENSE5=//") -#JOIN_KEY_GENERATED=$(openssl rand -hex 16) -export DEBIAN_FRONTEND=noninteractive - -#Generate Self-Signed Cert -mkdir -p /etc/pki/tls/private/ /etc/pki/tls/certs/ -openssl req -nodes -x509 -newkey rsa:4096 -keyout /etc/pki/tls/private/example.key -out /etc/pki/tls/certs/example.pem -days 356 -subj "/C=US/ST=California/L=SantaClara/O=IT/CN=*.localhost" - -CERTIFICATE_DOMAIN=$(cat /var/lib/cloud/instance/user-data.txt | grep "^CERTIFICATE_DOMAIN=" | sed "s/CERTIFICATE_DOMAIN=//") -[ -z "$CERTIFICATE_DOMAIN" ] && CERTIFICATE_DOMAIN=artifactory - -ARTIFACTORY_SERVER_NAME=$(cat /var/lib/cloud/instance/user-data.txt | grep "^ARTIFACTORY_SERVER_NAME=" | sed "s/ARTIFACTORY_SERVER_NAME=//") -[ -z "$ARTIFACTORY_SERVER_NAME" ] && ARTIFACTORY_SERVER_NAME=artifactory - -#Configuring nginx -rm /etc/nginx/sites-enabled/default - -cat </etc/nginx/nginx.conf - #user nobody; - worker_processes 1; - error_log /var/log/nginx/error.log info; - #pid logs/nginx.pid; - events { - worker_connections 1024; - } - - http { - include mime.types; - variables_hash_max_size 1024; - variables_hash_bucket_size 64; - server_names_hash_max_size 4096; - server_names_hash_bucket_size 128; - types_hash_max_size 2048; - types_hash_bucket_size 64; - proxy_read_timeout 2400s; - client_header_timeout 2400s; - client_body_timeout 2400s; - proxy_connect_timeout 75s; - proxy_send_timeout 2400s; - proxy_buffer_size 32k; - proxy_buffers 40 32k; - proxy_busy_buffers_size 64k; - proxy_temp_file_write_size 250m; - proxy_http_version 1.1; - client_body_buffer_size 128k; - - include /etc/nginx/conf.d/*.conf; - default_type application/octet-stream; - log_format main '$remote_addr - $remote_user [$time_local] "$request" ' - '$status $body_bytes_sent "$http_referer" ' - '"$http_user_agent" "$http_x_forwarded_for"'; - access_log /var/log/nginx/access.log main; - sendfile on; - #tcp_nopush on; - #keepalive_timeout 0; - keepalive_timeout 65; - } -EOF - -cat </etc/nginx/conf.d/artifactory.conf -ssl_protocols TLSv1 TLSv1.1 TLSv1.2; -ssl_certificate /etc/pki/tls/certs/cert.pem; -ssl_certificate_key /etc/pki/tls/private/cert.key; -ssl_session_cache shared:SSL:1m; -ssl_prefer_server_ciphers on; -## server configuration -server { - listen 443 ssl; - listen 80 ; - server_name ~(?.+)\\.${CERTIFICATE_DOMAIN} artifactory ${ARTIFACTORY_SERVER_NAME}.${CERTIFICATE_DOMAIN}; - if (\$http_x_forwarded_proto = '') { - set \$http_x_forwarded_proto \$scheme; - } - ## Application specific logs - ## access_log /var/log/nginx/artifactory-access.log timing; - ## error_log /var/log/nginx/artifactory-error.log; - rewrite ^/$ /ui/ redirect; - rewrite ^/ui$ /ui/ redirect; - chunked_transfer_encoding on; - client_max_body_size 0; - location / { - proxy_read_timeout 2400; - proxy_pass_header Server; - proxy_cookie_path ~*^/.* /; - proxy_pass http://127.0.0.1:8082; - proxy_next_upstream error timeout non_idempotent; - proxy_next_upstream_tries 1; - proxy_set_header X-JFrog-Override-Base-Url \$http_x_forwarded_proto://\$host:\$server_port; - proxy_set_header X-Forwarded-Port \$server_port; - proxy_set_header X-Forwarded-Proto \$http_x_forwarded_proto; - proxy_set_header Host \$http_host; - proxy_set_header X-Forwarded-For \$proxy_add_x_forwarded_for; - - location ~ ^/artifactory/ { - proxy_pass http://127.0.0.1:8081; - } - } -} -EOF - - -mkdir -p /opt/jfrog/artifactory/var/etc/artifactory/ -cat </opt/jfrog/artifactory/var/etc/artifactory/artifactory.cluster.license -${ARTIFACTORY_LICENSE_1} - -${ARTIFACTORY_LICENSE_2} - -${ARTIFACTORY_LICENSE_3} - -${ARTIFACTORY_LICENSE_4} - -${ARTIFACTORY_LICENSE_5} -EOF - -HOSTNAME=$(ip route get 8.8.8.8 | awk '{print $NF; exit}') - -if [ "${IS_PRIMARY}" = "true" ]; then - NODE_NAME=art-primary -else - NODE_NAME=art-$(date +%s$RANDOM) -fi - -# Java options -EXTRA_JAVA_OPTS=$(cat /var/lib/cloud/instance/user-data.txt | grep "^EXTRA_JAVA_OPTS=" | sed "s/EXTRA_JAVA_OPTS=//") -sed -i -e "s/#extraJavaOpts: \"-Xms512m -Xmx2g\"/extraJavaOpts: ${EXTRA_JAVA_OPTS}/" /var/opt/jfrog/artifactory/etc/system.yaml - -# Node settings -HOSTNAME=$(hostname -i) -sed -i -e "s/#id: \"art1\"/id: \"${NODE_NAME}\"/" /var/opt/jfrog/artifactory/etc/system.yaml -sed -i -e "s/#ip:/ip: ${HOSTNAME}/" /var/opt/jfrog/artifactory/etc/system.yaml -sed -i -e "s/#primary: true/primary: ${IS_PRIMARY}/" /var/opt/jfrog/artifactory/etc/system.yaml -sed -i -e "s/#haEnabled:/haEnabled:/" /var/opt/jfrog/artifactory/etc/system.yaml - -# Set MS SQL configuration -cat <>/var/opt/jfrog/artifactory/etc/system.yaml - ## One of: mysql, oracle, mssql, postgresql, mariadb - ## Default: Embedded derby - ## Example for mysql - type: mssql - driver: com.microsoft.sqlserver.jdbc.SQLServerDriver - url: ${DB_URL};databaseName=${DB_NAME};sendStringParametersAsUnicode=false;applicationName=Artifactory Binary Repository - username: ${DB_USER} - password: ${DB_PASSWORD} - -EOF - -# Create master.key on each node -mkdir -p /opt/jfrog/artifactory/var/etc/security/ - -cat </opt/jfrog/artifactory/var/etc/security/master.key -${MASTER_KEY} -EOF - -# Azure Blob Storage configuration -# https://www.jfrog.com/confluence/display/JFROG/Configuring+the+Filestore#ConfiguringtheFilestore-AzureBlobStorageClusterBinaryProvider -mkdir -p /var/opt/jfrog/artifactory/etc/artifactory/ -cat </var/opt/jfrog/artifactory/etc/artifactory/binarystore.xml - - - - ${STORAGE_ACCT} - ${STORAGE_ACCT_KEY} - https://${STORAGE_ACCT}.blob.core.windows.net/ - ${STORAGE_CONTAINER} - - -EOF - - -cat /var/lib/cloud/instance/user-data.txt | grep "^CERTIFICATE=" | sed "s/CERTIFICATE=//" > /tmp/temp.pem -cat /tmp/temp.pem | sed 's/CERTIFICATE----- /&\n/g' | sed 's/ -----END/\n-----END/g' | awk '{if($0 ~ /----/) {print;} else { gsub(/ /,"\n");print;}}' > /etc/pki/tls/certs/cert.pem -rm /tmp/temp.pem - -cat /var/lib/cloud/instance/user-data.txt | grep "^CERTIFICATE_KEY=" | sed "s/CERTIFICATE_KEY=//" > /tmp/temp.key -cat /tmp/temp.key | sed 's/KEY----- /&\n/' | sed 's/ -----END/\n-----END/' | awk '{if($0 ~ /----/) {print;} else { gsub(/ /,"\n");print;}}' > /etc/pki/tls/private/cert.key -rm /tmp/temp.key - -chown artifactory:artifactory -R /var/opt/jfrog/artifactory/* && chown artifactory:artifactory -R /var/opt/jfrog/artifactory/etc/security && chown artifactory:artifactory -R /var/opt/jfrog/artifactory/etc/* - -# start Artifactory -sleep $((RANDOM % 120)) -service artifactory start -service nginx start -nginx -s reload -echo "INFO: Artifactory HA installation completed." -echo "" diff --git a/AzureResourceManager/MP_submission_7/scripts/version_selector.sh b/AzureResourceManager/MP_submission_7/scripts/version_selector.sh deleted file mode 100644 index 13526b2..0000000 --- a/AzureResourceManager/MP_submission_7/scripts/version_selector.sh +++ /dev/null @@ -1,13 +0,0 @@ -#!/bin/bash -ARTIFACTORY_VERSION=$(cat /var/lib/cloud/instance/user-data.txt | grep "^ARTIFACTORY_VERSION=" | sed "s/ARTIFACTORY_VERSION=//") -IFS=$'\t' -SUPPORTED_VERSIONS=("6.8.0\t6.11.3\t6.15.0\t0.16.0\t0.17.0\t6.18.0") -unset IFS - -if [[ "\t${SUPPORTED_VERSIONS[@]}\t" =~ "\t${ARTIFACTORY_VERSION}\t" ]]; then - sh install_artifactory.sh - echo "\ninstall_artifactory.sh was selected" >> user-data.txt -else - sh install_artifactory7.sh - echo "\ninstall_artifactory7.sh was selected" >> user-data.txt -fi \ No newline at end of file diff --git a/AzureResourceManager/README.md b/AzureResourceManager/README.md deleted file mode 100644 index 8725cd8..0000000 --- a/AzureResourceManager/README.md +++ /dev/null @@ -1,81 +0,0 @@ -# Setup Artifactory Enterprise - - - - - - - - -This template can help you setup the [Artifactory Enterprise](https://jfrog.com/artifactory) on Azure. - -## A. Deploy Artifactory Enterprise on Azure -![screenshot](images/HA_Diagram.png) - - -1. Click "Deploy to Azure" button. If you haven't got an Azure subscription, it will guide you on how to signup for a free trial. - -2. Enter a valid values to parameters. At least 1 license has to be provided. - - -![screenshot](images/Parameters.png) - -3. Click on Purchase to start deploying resources. It will deploy MsSQL database, Azure Blob storage container, VM installing Nginx and Artifactory and Load balancer. - -4. Once deployment is done. Copy FQDN from Output of deployment template. - -5. Access artifactory using FQDN. - -6. You will see specified artifactory member nodes in 'Admin -> High Availability' page. - -### Note: -1. This template only supports Artifactory version 5.8.x and above. -2. Turn off daily backups. Read Documentation provided [here](https://www.jfrog.com/confluence/display/RTF/Managing+Backups) -3. Use SSL Certificate with valid wild card to you artifactory as docker registry with subdomain method. -4. Input values for 'adminUsername' and 'adminPassword' parameters needs to follow azure VM access rules. -5. One primary node is configured automatically. And, Minimum 1 member node is expected for the Artifactory HA installation. -6. This template provides support for max 5 licenses. To add more licenses, Edit the template (input fields, CustomScript sections) and install_artifactory.sh script. -7. Refer to [System Requirements](https://www.jfrog.com/confluence/display/RTF/System+Requirements) for changing 'extraJavaOptions' input parameter value. - -### Steps to setup Artifactory as secure docker registry -considering you have SSL certificate for `*.jfrog.team` -1. Pass your SSL Certificate in parameter `Certificate` as string -2. Pass your SSL Certificate Key in parameter `CertificateKey` as string -3. Set `CertificateDomain` as `jfrog.team` -4. Set `ArtifactoryServerName` as `artifactory` if you want to access artifactory with `https://artifactory.jfrog.team` -5. Create DNS record with entry `artifactory.jfrog.team` pointing to load balancer value provided as output in template deployment. -6. Create DNS record with entry `*.jfrog.team` pointing to load balancer value provided as output in template deployment. -7. If you have virtual docker registry with name `docker-virtual` in artifactory. You can access it via `docker-virtual.jfrog.team` - e.g ```docker pull docker-virtual.jfrog.team/nginx``` - -### Steps to upgrade Artifactory Version - -1. Login into Primary VM instance and sudo as root. Use the admin credentials provided in the install setup. -Note: Use load balancer's NAT entries under Azure resources, to get the allocated NAT port for accessing the VM instance. - -2. Stop nginx and artifactory services. - ``` - service nginx stop - service artifactory stop - ``` - -3. Upgrade artifactory with following apt-get install command. - ``` - apt-get update - apt-get -y install jfrog-artifactory-pro=${ARTIFACTORY_VERSION} - ``` -4. Start artifactory and nginx services. - ``` - service artifactory start - service nginx start - ``` -5. Repeat above steps for all member nodes. - ------- -#### Note: -Supported locations: `East US 2`, `Central US`, `West Central US` and `West Europe`. -Please check the Azure region support for `Standard Sku` property in load balancer for this template to work properly. -Check for SQL server support on specified location. If SQL server is not available in the location, Use 'DB_Location' to specify the location with SQL server support. - - - diff --git a/AzureResourceManager/azuredeploy.json b/AzureResourceManager/azuredeploy.json deleted file mode 100644 index e2bdccf..0000000 --- a/AzureResourceManager/azuredeploy.json +++ /dev/null @@ -1,937 +0,0 @@ -{ - "$schema": "https://schema.management.azure.com/schemas/2015-01-01/deploymentTemplate.json#", - "contentVersion": "1.0.0.0", - "parameters": { - "vmSku": { - "type": "string", - "defaultValue": "Standard_D4s_v3", - "metadata": { - "description": "Size of VMs in the VM Scale Set." - } - }, - "clusterName": { - "type": "string", - "maxLength": 61, - "metadata": { - "description": "String used as a base for naming resources. Must be 3-61 characters in length and globally unique across Azure. A hash is prepended to this string for some resources, and resource-specific information is appended." - } - }, - "location": { - "type": "string", - "defaultValue": "[resourceGroup().location]", - "metadata": { - "description": "Location for the resources." - } - }, - "nodeCount": { - "type": "int", - "defaultValue": 2, - "minValue": 1, - "maxValue": 100, - "metadata": { - "description": "Number of VM instances (100 or less) for member artifactory nodes. Minimum 1 node." - } - }, - "artifactoryVersion": { - "type": "string", - "defaultValue": "7.4.30", - "allowedValues": [ - "6.6.0", - "6.6.1", - "6.7.0", - "6.8.0", - "6.11.3", - "6.15.0", - "0.16.0", - "0.17.0", - "6.18.0", - "7.0.0717", - "7.0.4001", - "7.2.1", - "7.4.3", - "7.4.30", - "7.4.31" - ], - "metadata": { - "description": "Artifactory-vm image version to deploy." - } - }, - "masterKey": { - "type": "string", - "maxLength": 64, - "metadata": { - "description": "Master key for Artifactory cluster. Generate master.key using command '$openssl rand -hex 16'" - } - }, - "joinKey": { - "type": "string", - "maxLength": 64, - "metadata": { - "description": "Join key for Artifactory cluster. Generate join.key using command '$openssl rand -hex 16'" - } - }, - "adminUsername": { - "type": "string", - "metadata": { - "description": "Admin username on all VMs. Follow conventions for azure VM admin user name." - } - }, - "adminPassword": { - "type": "securestring", - "metadata": { - "description": "Admin password on all VMs. Follow conventions for azure VM admin password rules." - } - }, - "artifactoryLicense1": { - "type": "string", - "metadata": { - "description": "Artifactory Enterprise License. Providing one license is mandatory" - } - }, - "artifactoryLicense2": { - "type": "string", - "defaultValue": "", - "metadata": { - "description": "Artifactory Enterprise License" - } - }, - "artifactoryLicense3": { - "type": "string", - "defaultValue": "", - "metadata": { - "description": "Artifactory Enterprise License" - } - }, - "artifactoryLicense4": { - "type": "string", - "defaultValue": "", - "metadata": { - "description": "Artifactory Enterprise License" - } - }, - "artifactoryLicense5": { - "type": "string", - "defaultValue": "", - "metadata": { - "description": "Artifactory Enterprise License" - } - }, - "certificate": { - "type": "string", - "defaultValue": "-----BEGIN CERTIFICATE----- MIIFhzCCA2+gAwIBAgIJALC4r5BQWZE4MA0GCSqGSIb3DQEBCwUAMFoxCzAJBgNV BAYTAlVTMRMwEQYDVQQIDApDYWxpZm9ybmlhMRMwEQYDVQQHDApTYW50YUNsYXJh MQswCQYDVQQKDAJJVDEUMBIGA1UEAwwLKi5sb2NhbGhvc3QwHhcNMTgwMTE3MTk0 NjI4WhcNMTkwMTA4MTk0NjI4WjBaMQswCQYDVQQGEwJVUzETMBEGA1UECAwKQ2Fs aWZvcm5pYTETMBEGA1UEBwwKU2FudGFDbGFyYTELMAkGA1UECgwCSVQxFDASBgNV BAMMCyoubG9jYWxob3N0MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA 7KfOWDQlov8cMa8r/lcJqiWZaH9myQC74Vbe0HXsntQbcvljkjG2P7ebm5dd9Bzc sauNOJpbKf5AhFK1iwJUAkciGc1LR4k8wfWmQM3NPS8hrqrtH20zqNpdFRpNYjja JofwccPNm030GhhZkZ95TpruvmswMDwspl3jfqdcc/eiQsHcKyGnV2a+UAeoqe7J mHhmhRy1MLqAjF5U1GrUYUONA+22iRDJb4c9B91QoWvsnXpdA9NKV/mmA3/rIdx6 Ld2IPRdrIw2K5sAnXsh3bx2oCSvSfussf0x+4XDrnsaHVfjwvfNL8ECOuac2Oi/E WOp9528gOohpFAuwEt63Vl5p8/CC9m0HJDTZBKm2l5eD1kdPIj4PvP9Sn9CxGXKQ E1bxWoFxGX8EyRW0b0NK31N7b8JPZ1SoFNiB5amOMNLvR26a7cQrKumTuJeYK9Ja JaxhMXM7R0DA0Ev8ZG2xmyCygox+1KPSmJOIEpT70BFbj3rKLNqP22ET+zvPuh+2 DdgyrpHFeYkGWjMbWPjK7wJsD2zM8ccoJQfepPz8I4rT0JfrKAQgCGuGOggneaNJ KTVGNOFbj5AXdZ/Q+GvNommyRdq4J7EnqY6L+P25fo5qZ6UZ/iS0tPcvxgn0Fdhs pUPbQyQIDZyxZd3Q1lUIE38ol8P66mS2zbzf8EeOCoUCAwEAAaNQME4wHQYDVR0O BBYEFETAQM/5P7XJ8kevHFj6BPndQOFaMB8GA1UdIwQYMBaAFETAQM/5P7XJ8kev HFj6BPndQOFaMAwGA1UdEwQFMAMBAf8wDQYJKoZIhvcNAQELBQADggIBAJ1TepKv LWYhFmVQcgZwZf/qt1a1cohzJSm6da9RCnnAWC7WC/U117bgSomtrH1v0OysHFhB zBBUeBqI7+OmzAX8dhj+roKkcnFUM/IwlK1eueIIA//CWvEf/o0XExilVS2yCc9d PTpOQBXwk9QinxK36kHdBiGxa7dW0JPnOEEmuMgGORKeLy4J6Ik8iSeFY1SZVcOI +6WWvoKciPlmIeccC+6YVmkeBwhP2o5r5w/UAaO2hSnGvmm4UIj/VJv4VQu7xTUp cIfFz5NtIr80DbqcyPiEMS2ETJ4L/kO4MS5FfeEXyQuXCzmiIDVY6tE3C7+kZmK4 JzPLuWm9ndQoyQySOGfQqvlUR1+YxUdvmu3LrOS5dOA354Q36wHa4wEGUoHU/7GV fYQmmmDSDaNSpXW5PFey6scFyDBS/yYJ0H9EjYb/11HeWYj8Yv5xTWj8nhzJONC8 D6Y5ydlU4PifM2pOf88pTYpmogNwLJWXbql5I9cvMa8APo4yLVqcISU5ynsvFke+ Non+T0mHpJai/hrA9NK+s6EGC1dAX58jy61h6FhOPI1d4s/mov/KMa2t3SfZp5SF 81aR6dHvO56teiK5M1xMkrqG75zh3TMFJJLRFe9XxeB4JeN76URB3mgADOUqkBxd ibSgVqfKwOw4IujEcqMUc5mqSnbLY1Dv+oby -----END CERTIFICATE-----", - "metadata": { - "description": "To use Artifactory as docker registry you need to provide wild card valid Certificate. Provide your SSL Certificate." - } - }, - "certificateKey": { - "type": "string", - "defaultValue": "-----BEGIN PRIVATE KEY----- MIIJRAIBADANBgkqhkiG9w0BAQEFAASCCS4wggkqAgEAAoICAQDsp85YNCWi/xwx ryv+VwmqJZlof2bJALvhVt7Qdeye1Bty+WOSMbY/t5ubl130HNyxq404mlsp/kCE UrWLAlQCRyIZzUtHiTzB9aZAzc09LyGuqu0fbTOo2l0VGk1iONomh/Bxw82bTfQa GFmRn3lOmu6+azAwPCymXeN+p1xz96JCwdwrIadXZr5QB6ip7smYeGaFHLUwuoCM XlTUatRhQ40D7baJEMlvhz0H3VCha+ydel0D00pX+aYDf+sh3Hot3Yg9F2sjDYrm wCdeyHdvHagJK9J+6yx/TH7hcOuexodV+PC980vwQI65pzY6L8RY6n3nbyA6iGkU C7AS3rdWXmnz8IL2bQckNNkEqbaXl4PWR08iPg+8/1Kf0LEZcpATVvFagXEZfwTJ FbRvQ0rfU3tvwk9nVKgU2IHlqY4w0u9HbprtxCsq6ZO4l5gr0lolrGExcztHQMDQ S/xkbbGbILKCjH7Uo9KYk4gSlPvQEVuPesos2o/bYRP7O8+6H7YN2DKukcV5iQZa MxtY+MrvAmwPbMzxxyglB96k/PwjitPQl+soBCAIa4Y6CCd5o0kpNUY04VuPkBd1 n9D4a82iabJF2rgnsSepjov4/bl+jmpnpRn+JLS09y/GCfQV2GylQ9tDJAgNnLFl 3dDWVQgTfyiXw/rqZLbNvN/wR44KhQIDAQABAoICAQDm1pAp7UPBCELCG/I3t0KQ GvjWu17RNcwN86SHhl92VcMolSaQ1bjF0h0Q2ccldHm5PHMWAUpnXcAk0mCO5Yh4 aFZVALEraCxBrZGrqJNH2Q9rxwJhIy2+yLD/Apb09iukZfkdnzaRBKrUQWgs6Xd0 OyAh0YBBrJCI/xAG3M0LuUMnBt3xnHQUhv2gJrhYeble5iJqOSRsEZ+OS/1G7aWX 8kI80MS6UguKpEndv/0EV7eHrHHKZ3Ee+z76Lu52Kw9qaaqYnJ0+pdkVV92PUM9f LXhY6cv7TP4sdbtVv8W1LEWakKaTQhySjwYpBXeZrjpB2QlSlEzFi4WjrfrjjSca UZazm/jY5uDI2cXf35NyZUkbYxIKlGtURtDpoPp5R7XguHSoqLrh2Zsc79mZfNST zFwbhNBVB2nAl6ZyIRNFLjVhQScvlImpIVSVZm5/NiiABIEaxRh8w8C5qRMctSTy KF6rS6as2KsPQHpiu/6nDMqqTZ8UMQ3yXEpai5VwAzKFP67usHheKf4RIXNUn7Xc JxWiI8KfOV5n4cSJK1/R+i+ZpWyQiloao4v7GS/fwZTsILeBLBa0utDmNs5aJgVK cEagRjVGAeAEc2W+jXmSqtZRHQowJmEKOARMn4lI+duziSCjIfPH6xIDAUhVlc/K u03432NupfPepW6BYVBgQQKCAQEA/+CD2uiRZgmzuEn/vn/u7jGFjETdUQmfl5kX pMTtueXyQxHBRwBCZqq885doozeQd7mLRcW+klngq1NmnEnjx+NfUzFJLpEmQO1/ AMHUpYpZY4jOyntx9cBy+M+DUfNtdsJUz+VOe3HO5/lJJf+gSgpVp2ku1oOrgEeH a71aGIXOsiOQ/fHL4Q0CuylersD5Dq4Tdf/u6rr4NbwOZQCQ9WH0uTckA9SkjJFu iHXblg8j9RUNbj89WPrEulKA98duFuLvGTeohcAPQ8f60Z7sxDLGLRyRvhUO4EBr hTTmcfI2LsPWSo+X+n6eBqfUfGZub2qN+d2B08qKgnGdgFEf6QKCAQEA7MTtAphl lswq4kPvDkPHMqJhmPBgb5NAUzE2Z8yjJY3IX6zxinSDnuMwEzCinKe7rzv6aYIh klviND/oyLOxVlLESZu62epokgIey05sv9a/030z7q5hradNzcMP1VfGVs6IeOvr 3Kit4T7LI1L2eXwD1Yks6uHHw8lHAlyrrlbwCEmzqElKs0YtkvNa4HFgesFNnObe f8C29LOPZMqje7iAT91823MGI9NML9qGYON/ZLc4uCB9no+o6ZOTQHqX1xxSWv5D 66KGiRnUC/RAq6RbTVn3NxFgvb3k0rejbQbxW5KCri1E4sTw+pZ5bIRUJcXi+J+Z Tg88lVbmqXfwPQKCAQEA94yShDr0UC+au/R7hCXpVnB6r5YAN+KDj/sAsNwE0hDx LIoE31gU5ZbRbylQhne/QNU1NK93C8gAYEAzyYiC4mPLWYUZNAAhbjdW47iirfUH PhChX6vGOOeTU7wPZD2J7ZdczjUelLcqYar/Zc/Fl1wgOfK86bRBO733+fgbLhZm PlnCcKx5fqVDuybu/0qaqeUn1sVgs59nezURCA5gL8YxKO973GjhOU2KDmNXqfnD 49wWPk7YXzldEpW3SACdNW8futnqJFwHaKAUvLBwh/BHYmV9atScq8AnRZxERoD6 govcyg3aDvJomC/OlvvSY+BGszHl5KzTDBg3NGlH4QKCAQA/71lU5xQfqVg3K0MF ZhYHPUP/iYFw/6FSFarsUp0Higa+lzPOQHI+WHjl5a8zgDO1OQwAq6wnGnq1w0A3 2hYcClOI0O2e5KaCLuJj4fSJxRKdqGR6okosG05uLqs63+3mCPVfOc3CEyaI+Wzf SArYeT2LzvP7JSbNXq+3GpEdjcpZYpWJ7uimCmBKGz7B9runykUMBme0tbRx1X72 J6YHxaWYa2XI2IGi8O7UyTyaMzR2XOeLCPMC+yYQlNIhijkwVCyE974dhhCwOvJA nB9Oeh5Rf+a6zw2BjyKYKBCQY1yPbrutDvpYBfhQoot9Wyph3NLScj5yjri8VvAI eSO9AoIBAQDyUx5YUgHgpoJtRZ+8PGQBZHm5L5HJhvfUs96I9Z4lZSXnCmEJyOWn LIob8c0n4hU1EXdbbl+7eRQgG3oGKyF0XXhuaP3vHprIBW6tm9kCGORTliZOaZdW 0Mj9GUv2de1r8anwJMFvIMXsuO08rsGzsIt7DrNYa0YSMkeDwPenRfDHXOYH2fjf RKjlP3fQr/iLL/YuMGaNxzIeyWPZ2WTUUC0bllNxMTZmztuMkPNb7fhhs0hLecXM fE2nbwUaGwMZaails1+5G3HvEAlChJ1GN9XnYxrtfqq93tYELWBiNcv1LaMAFvj8 S+j1+iUKGGhwVmhqh75q5do3+VF3XlAh -----END PRIVATE KEY-----", - "metadata": { - "description": "Provide your SSL Certificate key" - } - }, - "certificateDomain": { - "type": "string", - "minLength": 1, - "defaultValue": "artifactory", - "metadata": { - "description": "Provide your Certificate Domain Name. For e.g jfrog.team for certificate with *.jfrog.team" - } - }, - "artifactoryServerName": { - "type": "string", - "minLength": 1, - "defaultValue": "artifactory", - "metadata": { - "description": "Provide artifactory server name to be used in Nginx. e.g artifactory for artifactory.jfrog.team" - } - }, - "extraJavaOptions": { - "type": "string", - "minLength": 1, - "defaultValue": "-server -Xms2g -Xmx8g -Xss256k -XX:+UseG1GC -XX:OnOutOfMemoryError=\\\"kill -9 %p\\\"", - "metadata": { - "description": "Setting Java Memory Parameters for Artifactory. Learn about system requirements for Artifactory https://www.jfrog.com/confluence/display/RTF/System+Requirements#SystemRequirements-RecommendedHardware." - } - }, - "DB_Admin_User": { - "type": "string", - "minLength": 1, - "metadata": { - "description": "Database Admin user name" - } - }, - "DB_Admin_Password": { - "type": "securestring", - "minLength": 1, - "metadata": { - "description": "Database Admin password" - } - }, - "DB_Name": { - "type": "string", - "minLength": 1, - "metadata": { - "description": "Database name" - } - }, - "DB_Edition": { - "type": "string", - "minLength": 1, - "defaultValue": "Basic", - "allowedValues": [ - "Basic", - "Standard", - "Premium" - ], - "metadata": { - "description": "Database Edition" - } - }, - "storageAccountType": { - "type": "string", - "defaultValue": "Standard_LRS", - "allowedValues": [ - "Standard_LRS", - "Standard_GRS", - "Standard_ZRS" - ], - "metadata": { - "description": "Storage Account type" - } - }, - "_artifactsLocation": { - "type": "string", - "metadata": { - "description": "The base URI where artifacts required by this template are located. When the template is deployed using the accompanying scripts, a private location in the subscription will be used and this value will be automatically generated." - }, - "defaultValue": "https://raw.githubusercontent.com/jfrog/JFrog-Cloud-Installers/master/AzureResourceManager/" - }, - "_artifactsLocationSasToken": { - "type": "securestring", - "metadata": { - "description": "The sasToken required to access _artifactsLocation. When the template is deployed using the accompanying scripts, a sasToken will be automatically generated." - }, - "defaultValue": "" - } - }, - "variables": { - "namingInfix": "[toLower(substring(concat(parameters('clusterName'), uniqueString(resourceGroup().id)), 0, 9))]", - "addressPrefix": "10.0.0.0/16", - "subnetPrimaryPrefix": "10.0.1.0/24", - "subnetMemberPrefix": "10.0.2.0/24", - "virtualNetworkName": "[concat(variables('namingInfix'), 'vnet')]", - "subnetPrimaryName": "[concat(variables('namingInfix'), 'primarySubnet')]", - "subnetMemberName": "[concat(variables('namingInfix'), 'memberSubnet')]", - "scaleSetPrimaryName": "[concat(variables('namingInfix'), 'primaryScaleset')]", - "scaleSetMemberName": "[concat(variables('namingInfix'), 'memberScaleset')]", - "lbName": "[concat(variables('namingInfix'), 'lb')]", - "bepoolPrimaryName": "[concat(variables('lbName'), 'primaryBepool')]", - "bepoolMemberName": "[concat(variables('lbName'), 'memberBepool')]", - "fepoolPrimaryName": "[concat(variables('lbName'), 'primaryFepool')]", - "fepoolMemberName": "[concat(variables('lbName'), 'memberFepool')]", - "bepoolPrimaryID": "[resourceId('Microsoft.Network/loadBalancers/backendAddressPools', variables('lbName'), variables('bepoolPrimaryName'))]", - "bepoolMemberID": "[resourceId('Microsoft.Network/loadBalancers/backendAddressPools', variables('lbName'), variables('bepoolMemberName'))]", - "feIpConfigPrimaryName": "[concat(variables('fepoolPrimaryName'), 'primaryIpConfig')]", - "feIpConfigMemberName": "[concat(variables('fepoolMemberName'), 'memberIpConfig')]", - "feIpConfigPrimaryId": "[resourceId('Microsoft.Network/loadBalancers/frontendIpConfigurations', variables('lbName'), variables('feIpConfigPrimaryName'))]", - "feIpConfigMemberId": "[resourceId('Microsoft.Network/loadBalancers/frontendIpConfigurations', variables('lbName'), variables('feIpConfigMemberName'))]", - "pipPrimaryName": "[concat(variables('namingInfix'), 'primaryPip')]", - "pipMemberName": "[concat(variables('namingInfix'), 'memberPip')]", - "nicPrimaryName": "[concat(variables('namingInfix'), 'primaryNic')]", - "nicMemberName": "[concat(variables('namingInfix'), 'memberNic')]", - "natPoolPrimaryName": "[concat(variables('lbName'), 'primaryNatpool')]", - "natPoolMemberName": "[concat(variables('lbName'), 'memberNatpool')]", - "ipConfigName": "[concat(variables('namingInfix'), 'ipconfig')]", - "httpProbePrimaryName": "primaryHttpProbe", - "httpsProbePrimaryName": "primaryHttpsProbe", - "httpProbeMemberName": "memberHttpProbe", - "httpsProbeMemberName": "memberHttpsProbe", - "storageAccountName": "[concat(variables('namingInfix'), 'storage')]", - "vmStorageAccountContainerName": "filestore", - "azureSqlServerName": "[concat(variables('namingInfix'), 'sqlsrv')]", - "DB_Name": "[parameters('DB_Name')]", - "DB_Admin_User": "[parameters('DB_Admin_User')]", - "DB_Admin_Password": "[parameters('DB_Admin_Password')]", - "DB_Edition": "[parameters('DB_Edition')]", - "DB_Location": "[parameters('location')]", - "masterKey": "[parameters('masterKey')]", - "joinKey": "[parameters('joinKey')]", - "certificate": "[parameters('certificate')]", - "certificateKey": "[parameters('certificateKey')]", - "certificateDomain": "[parameters('certificateDomain')]", - "artifactoryServerName": "[parameters('artifactoryServerName')]", - "extraJavaOptions": "[parameters('extraJavaOptions')]", - "artifactoryLicense1": "[parameters('artifactoryLicense1')]", - "artifactoryLicense2": "[parameters('artifactoryLicense2')]", - "artifactoryLicense3": "[parameters('artifactoryLicense3')]", - "artifactoryLicense4": "[parameters('artifactoryLicense4')]", - "artifactoryLicense5": "[parameters('artifactoryLicense5')]", - "osType": { - "publisher": "jfrog", - "offer": "artifactory-vm", - "sku": "artifactory-vm-private", - "version": "[parameters('artifactoryVersion')]" - }, - "imageReference": "[variables('osType')]", - "dbTemplate": "azureDBDeploy.json", - "dbTemplateLocation": "[uri(parameters('_artifactsLocation'), concat('nested/', variables('dbTemplate'), parameters('_artifactsLocationSasToken')))]", - "nsgName": "[concat(variables('namingInfix'), 'nsg')]" - }, - "resources": [ - { - "apiVersion": "2019-05-01", - "name": "pid-04c1c376-5d4b-4771-9a7f-054f5910dcef", - "type": "Microsoft.Resources/deployments", - "properties": { - "mode": "Incremental", - "template": { - "$schema": "https://schema.management.azure.com/schemas/2015-01-01/deploymentTemplate.json#", - "contentVersion": "1.0.0.0", - "resources": [] - } - } - }, - { - "type": "Microsoft.Network/networkSecurityGroups", - "location": "[parameters('location')]", - "name": "[variables('nsgName')]", - "apiVersion": "2018-07-01", - "properties": { - "securityRules": [ - { - "name": "ssh-rule", - "properties": { - "description": "Allow SSH", - "protocol": "Tcp", - "sourcePortRange": "*", - "destinationPortRange": "22", - "sourceAddressPrefix": "Internet", - "destinationAddressPrefix": "*", - "access": "Allow", - "priority": 100, - "direction": "Inbound" - } - }, - { - "name": "http-artifactory-rule", - "properties": { - "description": "Allow HTTP", - "protocol": "Tcp", - "sourcePortRange": "*", - "destinationPortRange": "8081", - "sourceAddressPrefix": "Internet", - "destinationAddressPrefix": "*", - "access": "Allow", - "priority": 101, - "direction": "Inbound" - } - }, - { - "name": "http-nginx-rule", - "properties": { - "description": "Allow HTTP", - "protocol": "Tcp", - "sourcePortRange": "*", - "destinationPortRange": "80", - "sourceAddressPrefix": "Internet", - "destinationAddressPrefix": "*", - "access": "Allow", - "priority": 102, - "direction": "Inbound" - } - }, - { - "name": "https-nginx-rule", - "properties": { - "description": "Allow HTTP", - "protocol": "Tcp", - "sourcePortRange": "*", - "destinationPortRange": "443", - "sourceAddressPrefix": "Internet", - "destinationAddressPrefix": "*", - "access": "Allow", - "priority": 103, - "direction": "Inbound" - } - }, - { - "name": "membership-rule", - "properties": { - "description": "Allow HTTP", - "protocol": "Tcp", - "sourcePortRange": "*", - "destinationPortRange": "10001", - "sourceAddressPrefix": "Internet", - "destinationAddressPrefix": "*", - "access": "Allow", - "priority": 105, - "direction": "Inbound" - } - } - ] - } - }, - { - "type": "Microsoft.Network/virtualNetworks", - "name": "[variables('virtualNetworkName')]", - "location": "[parameters('location')]", - "apiVersion": "2018-07-01", - "dependsOn": [ - "[concat('Microsoft.Network/networkSecurityGroups/', variables('nsgName'))]" - ], - "properties": { - "addressSpace": { - "addressPrefixes": [ - "[variables('addressPrefix')]" - ] - }, - "subnets": [ - { - "name": "[variables('subnetPrimaryName')]", - "properties": { - "addressPrefix": "[variables('subnetPrimaryPrefix')]", - "networkSecurityGroup": { - "id": "[resourceId('Microsoft.Network/networkSecurityGroups', variables('nsgName'))]" - } - } - }, - { - "name": "[variables('subnetMemberName')]", - "properties": { - "addressPrefix": "[variables('subnetMemberPrefix')]", - "networkSecurityGroup": { - "id": "[resourceId('Microsoft.Network/networkSecurityGroups', variables('nsgName'))]" - } - } - } - ] - } - }, - { - "apiVersion": "2018-07-01", - "type": "Microsoft.Network/networkInterfaces", - "name": "[variables('nicPrimaryName')]", - "location": "[parameters('location')]", - "dependsOn": [ - "[concat('Microsoft.Network/publicIPAddresses/', variables('pipPrimaryName'))]", - "[concat('Microsoft.Network/virtualNetworks/', variables('virtualNetworkName'))]", - "[resourceId('Microsoft.Network/networkSecurityGroups', variables('nsgName'))]" - ], - "properties": { - "ipConfigurations": [ - { - "name": "ipconfig1", - "properties": { - "privateIPAllocationMethod": "Dynamic", - "subnet": { - "id": "[resourceId('Microsoft.Network/virtualNetworks/subnets', variables('virtualNetworkName'), variables('subnetPrimaryName'))]" - } - } - } - ], - "networkSecurityGroup": { - "id": "[resourceId('Microsoft.Network/networkSecurityGroups', variables('nsgName'))]" - } - } - }, - { - "apiVersion": "2018-07-01", - "type": "Microsoft.Network/networkInterfaces", - "name": "[variables('nicMemberName')]", - "location": "[parameters('location')]", - "dependsOn": [ - "[concat('Microsoft.Network/publicIPAddresses/', variables('pipMemberName'))]", - "[concat('Microsoft.Network/virtualNetworks/', variables('virtualNetworkName'))]", - "[resourceId('Microsoft.Network/networkSecurityGroups', variables('nsgName'))]" - ], - "properties": { - "ipConfigurations": [ - { - "name": "ipconfig1", - "properties": { - "privateIPAllocationMethod": "Dynamic", - "subnet": { - "id": "[resourceId('Microsoft.Network/virtualNetworks/subnets', variables('virtualNetworkName'), variables('subnetMemberName'))]" - } - } - } - ], - "networkSecurityGroup": { - "id": "[resourceId('Microsoft.Network/networkSecurityGroups', variables('nsgName'))]" - } - } - }, - { - "type": "Microsoft.Network/publicIPAddresses", - "name": "[variables('pipPrimaryName')]", - "location": "[parameters('location')]", - "sku": { - "name": "Standard" - }, - "apiVersion": "2018-07-01", - "properties": { - "publicIPAllocationMethod": "Static", - "dnsSettings": { - "domainNameLabel": "[variables('namingInfix')]" - } - } - }, - { - "type": "Microsoft.Network/publicIPAddresses", - "name": "[variables('pipMemberName')]", - "location": "[parameters('location')]", - "sku": { - "name": "Standard" - }, - "apiVersion": "2018-07-01", - "properties": { - "publicIPAllocationMethod": "Static", - "dnsSettings": { - "domainNameLabel": "[concat(variables('namingInfix'),'2')]" - } - } - }, - { - "type": "Microsoft.Network/loadBalancers", - "name": "[variables('lbName')]", - "location": "[parameters('location')]", - "apiVersion": "2018-07-01", - "sku": { - "name": "Standard" - }, - "dependsOn": [ - "[concat('Microsoft.Network/publicIPAddresses/', variables('pipPrimaryName'))]", - "[concat('Microsoft.Network/publicIPAddresses/', variables('pipMemberName'))]" - ], - "tags":{ - "displayName": "Load Balancer" - }, - "properties": { - "frontendIPConfigurations": [ - { - "name": "[variables('feIpConfigPrimaryName')]", - "properties": { - "publicIPAddress": { - "id": "[resourceId('Microsoft.Network/publicIPAddresses', variables('pipPrimaryName'))]" - } - } - }, - { - "name": "[variables('feIpConfigMemberName')]", - "properties": { - "publicIPAddress": { - "id": "[resourceId('Microsoft.Network/publicIPAddresses', variables('pipMemberName'))]" - } - } - } - ], - "backendAddressPools": [ - { - "name": "[variables('bepoolPrimaryName')]" - }, - { - "name": "[variables('bepoolMemberName')]" - } - ], - "inboundNatPools": [ - { - "name": "[variables('natPoolPrimaryName')]", - "properties": { - "frontendIPConfiguration": { - "id": "[variables('feIpConfigPrimaryId')]" - }, - "protocol": "tcp", - "frontendPortRangeStart": 10022, - "frontendPortRangeEnd": 11022, - "backendPort": 22 - } - }, - { - "name": "[variables('natPoolMemberName')]", - "properties": { - "frontendIPConfiguration": { - "id": "[variables('feIpConfigMemberId')]" - }, - "protocol": "tcp", - "frontendPortRangeStart": 20022, - "frontendPortRangeEnd": 21022, - "backendPort": 22 - } - } - ], - "loadBalancingRules": [ - { - "name": "HTTPRulePrimary", - "properties": { - "loadDistribution": "Default", - "frontendIPConfiguration": { - "id": "[variables('feIpConfigPrimaryId')]" - }, - "backendAddressPool": { - "id": "[variables('bepoolPrimaryID')]" - }, - "protocol": "Tcp", - "frontendPort": 80, - "backendPort": 80, - "enableFloatingIP": false, - "idleTimeoutInMinutes": 5, - "probe": { - "id": "[resourceId('Microsoft.Network/loadBalancers/probes', variables('lbName'), variables('httpProbePrimaryName'))]" - } - } - }, - { - "name": "HTTPSRulePrimary", - "properties": { - "loadDistribution": "Default", - "frontendIPConfiguration": { - "id": "[variables('feIpConfigPrimaryId')]" - }, - "backendAddressPool": { - "id": "[variables('bepoolPrimaryID')]" - }, - "protocol": "Tcp", - "frontendPort": 443, - "backendPort": 443, - "enableFloatingIP": false, - "idleTimeoutInMinutes": 5, - "probe": { - "id": "[resourceId('Microsoft.Network/loadBalancers/probes', variables('lbName'), variables('httpsProbePrimaryName'))]" - } - } - }, - { - "name": "HTTPRuleMember", - "properties": { - "loadDistribution": "Default", - "frontendIPConfiguration": { - "id": "[variables('feIpConfigMemberId')]" - }, - "backendAddressPool": { - "id": "[variables('bepoolMemberID')]" - }, - "protocol": "Tcp", - "frontendPort": 80, - "backendPort": 80, - "enableFloatingIP": false, - "idleTimeoutInMinutes": 5, - "probe": { - "id": "[resourceId('Microsoft.Network/loadBalancers/probes', variables('lbName'), variables('httpProbeMemberName'))]" - } - } - }, - { - "name": "HTTPSRuleMember", - "properties": { - "loadDistribution": "Default", - "frontendIPConfiguration": { - "id": "[variables('feIpConfigMemberId')]" - }, - "backendAddressPool": { - "id": "[variables('bepoolMemberID')]" - }, - "protocol": "Tcp", - "frontendPort": 443, - "backendPort": 443, - "enableFloatingIP": false, - "idleTimeoutInMinutes": 5, - "probe": { - "id": "[resourceId('Microsoft.Network/loadBalancers/probes', variables('lbName'), variables('httpsProbeMemberName'))]" - } - } - } - ], - "probes": [ - { - "name": "[variables('httpProbePrimaryName')]", - "properties": { - "protocol": "Http", - "requestPath": "/artifactory/api/system/ping", - "port": 80, - "intervalInSeconds": 60, - "numberOfProbes": 5 - } - }, - { - "name": "[variables('httpsProbePrimaryName')]", - "properties": { - "protocol": "Tcp", - "port": 443, - "intervalInSeconds": 60, - "numberOfProbes": 5 - } - }, - { - "name": "[variables('httpProbeMemberName')]", - "properties": { - "protocol": "Http", - "requestPath": "/artifactory/api/system/ping", - "port": 80, - "intervalInSeconds": 60, - "numberOfProbes": 5 - } - }, - { - "name": "[variables('httpsProbeMemberName')]", - "properties": { - "protocol": "Tcp", - "port": 443, - "intervalInSeconds": 60, - "numberOfProbes": 5 - } - } - ] - } - }, - { - "apiVersion": "2018-07-01", - "type": "Microsoft.Storage/storageAccounts", - "name": "[variables('storageAccountName')]", - "location": "[parameters('location')]", - "sku": { - "name": "[parameters('storageAccountType')]" - }, - "tags":{ - "displayName": "Artifactory Storage Account" - }, - "kind": "Storage", - "properties": {} - }, - { - "type": "Microsoft.Resources/deployments", - "name": "deploySQLDB", - "apiVersion": "2018-07-01", - "properties": { - "mode": "Incremental", - "templateLink": { - "uri": "[variables('dbTemplateLocation')]", - "contentVersion": "1.0.0.0" - }, - "parameters": { - "db_user": { - "value": "[parameters('DB_Admin_User')]" - }, - "db_password": { - "value": "[parameters('DB_Admin_Password')]" - }, - "db_server": { - "value": "[variables('azureSqlServerName')]" - }, - "db_name": { - "value": "[parameters('DB_Name')]" - }, - "db_edition": { - "value": "[parameters('DB_Edition')]" - }, - "db_location": { - "value": "[variables('DB_Location')]" - } - } - } - }, - { - "type": "Microsoft.Compute/virtualMachineScaleSets", - "name": "[variables('scaleSetPrimaryName')]", - "location": "[parameters('location')]", - "apiVersion": "2018-10-01", - "dependsOn": [ - "[concat('Microsoft.Network/loadBalancers/', variables('lbName'))]", - "[concat('Microsoft.Network/virtualNetworks/', variables('virtualNetworkName'))]", - "[concat('Microsoft.Resources/deployments/', 'deploySQLDB')]", - "[concat('Microsoft.Storage/storageAccounts/', variables('storageAccountName'))]" - ], - "plan": { - "name": "artifactory-vm-private", - "publisher": "jfrog", - "product": "artifactory-vm" - }, - "sku": { - "name": "[parameters('vmSku')]", - "tier": "Standard", - "capacity": "1" - }, - "properties": { - "singlePlacementGroup": true, - "overprovision": "false", - "upgradePolicy": { - "mode": "Manual" - }, - "virtualMachineProfile": { - "storageProfile": { - "osDisk": { - "caching": "ReadWrite", - "diskSizeGB": "250", - "createOption": "FromImage" - }, - "imageReference": "[variables('imageReference')]" - }, - "osProfile": { - "computerNamePrefix": "[variables('namingInfix')]", - "adminUsername": "[parameters('adminUsername')]", - "adminPassword": "[parameters('adminPassword')]", - "customData": "[base64(concat('#INSTALL SCRIPT INPUTS\nARTIFACTORY_VERSION=', parameters('artifactoryVersion'),'\nCERTIFICATE_KEY=',parameters('certificateKey'),'\nCERTIFICATE=', parameters('certificate'),'\nCERTIFICATE_DOMAIN=',parameters('certificateDomain'),'\nARTIFACTORY_SERVER_NAME=',parameters('artifactoryServerName'),'\nEXTRA_JAVA_OPTS=',parameters('extraJavaOptions'),'\nJDBC_STR=',reference('Microsoft.Resources/deployments/deploySQLDB').outputs.jdbcConnString.value,'\nDB_NAME=',variables('DB_Name'),'\nDB_ADMIN_USER=',variables('DB_Admin_User'),'\nDB_ADMIN_PASSWD=',variables('DB_Admin_Password'),'\nSTO_ACT_NAME=',variables('storageAccountName'),'\nSTO_ACT_ENDPOINT=',reference(resourceId('Microsoft.Storage/storageAccounts/', variables('storageAccountName'))).primaryEndpoints.blob,'\nSTO_CTR_NAME=',variables('vmStorageAccountContainerName'),'\nSTO_ACT_KEY=',listKeys(resourceId('Microsoft.Storage/storageAccounts', variables('storageAccountName')), '2018-07-01').keys[0].value,'\nMASTER_KEY=',variables('masterKey'),'\nJOIN_KEY=',variables('joinKey'),'\nIS_PRIMARY=','true','\nLICENSE1=',variables('artifactoryLicense1'),'\nLICENSE2=',variables('artifactoryLicense2'),'\nLICENSE3=',variables('artifactoryLicense3'),'\nLICENSE4=',variables('artifactoryLicense4'),'\nLICENSE5=',variables('artifactoryLicense5'),'\n'))]" - }, - "networkProfile": { - "networkInterfaceConfigurations": [ - { - "name": "[variables('nicPrimaryName')]", - "properties": { - "primary": true, - "ipConfigurations": [ - { - "name": "[concat(variables('ipConfigName'),'1')]", - "properties": { - "subnet": { - "id": "[resourceId('Microsoft.Network/virtualNetworks/subnets', variables('virtualNetworkName'), variables('subnetPrimaryName'))]" - }, - "loadBalancerBackendAddressPools": [ - { - "id": "[resourceId('Microsoft.Network/loadBalancers/backendAddressPools', variables('lbName'), variables('bePoolPrimaryName'))]" - } - ], - "loadBalancerInboundNatPools": [ - { - "id": "[resourceId('Microsoft.Network/loadBalancers/inboundNatPools', variables('lbName'), variables('natPoolPrimaryName'))]" - } - ] - } - } - ] - } - } - ] - }, - "extensionProfile": { - "extensions": [ - { - "name": "extension1", - "properties": { - "publisher": "Microsoft.Azure.Extensions", - "type": "CustomScript", - "typeHandlerVersion": "2.0", - "autoUpgradeMinorVersion": false, - "settings": { - "fileUris": [ - "[uri(parameters('_artifactsLocation'), concat('scripts/install_artifactory.sh', parameters('_artifactsLocationSasToken')))]", - "[uri(parameters('_artifactsLocation'), concat('scripts/install_artifactory7.sh', parameters('_artifactsLocationSasToken')))]", - "[uri(parameters('_artifactsLocation'), concat('scripts/version_selector.sh', parameters('_artifactsLocationSasToken')))]" - ] - }, - "protectedSettings": { - "commandToExecute": "bash version_selector.sh && ls -al && pwd >> /var/lib/cloud/instance/user-data.txt" - } - } - } - ] - } - } - } - }, - { - "type": "Microsoft.Compute/virtualMachineScaleSets", - "name": "[variables('scaleSetMemberName')]", - "location": "[parameters('location')]", - "apiVersion": "2018-10-01", - "dependsOn": [ - "[concat('Microsoft.Network/loadBalancers/', variables('lbName'))]", - "[concat('Microsoft.Network/virtualNetworks/', variables('virtualNetworkName'))]", - "[concat('Microsoft.Compute/virtualMachineScaleSets/', variables('scaleSetPrimaryName'))]", - "[concat('Microsoft.Resources/deployments/', 'deploySQLDB')]", - "[concat('Microsoft.Storage/storageAccounts/', variables('storageAccountName'))]" - ], - "plan": { - "name": "artifactory-vm-private", - "publisher": "jfrog", - "product": "artifactory-vm" - }, - "sku": { - "name": "[parameters('vmSku')]", - "tier": "Standard", - "capacity": "[parameters('nodeCount')]" - }, - "properties": { - "singlePlacementGroup": true, - "overprovision": "false", - "upgradePolicy": { - "mode": "Manual" - }, - "virtualMachineProfile": { - "storageProfile": { - "osDisk": { - "caching": "ReadWrite", - "diskSizeGB": "250", - "createOption": "FromImage" - }, - "imageReference": "[variables('imageReference')]" - }, - "osProfile": { - "computerNamePrefix": "[variables('namingInfix')]", - "adminUsername": "[parameters('adminUsername')]", - "adminPassword": "[parameters('adminPassword')]", - "customData": "[base64(concat('#INSTALL SCRIPT INPUTS\nARTIFACTORY_VERSION=', parameters('artifactoryVersion'),'\nCERTIFICATE_KEY=',parameters('certificateKey'),'\nCERTIFICATE=', parameters('certificate'),'\nCERTIFICATE_DOMAIN=',parameters('certificateDomain'),'\nARTIFACTORY_SERVER_NAME=',parameters('artifactoryServerName'),'\nEXTRA_JAVA_OPTS=',parameters('extraJavaOptions'),'\nJDBC_STR=',reference('Microsoft.Resources/deployments/deploySQLDB').outputs.jdbcConnString.value,'\nDB_NAME=',variables('DB_Name'),'\nDB_ADMIN_USER=',variables('DB_Admin_User'),'\nDB_ADMIN_PASSWD=',variables('DB_Admin_Password'),'\nSTO_ACT_NAME=',variables('storageAccountName'),'\nSTO_ACT_ENDPOINT=',reference(resourceId('Microsoft.Storage/storageAccounts/', variables('storageAccountName'))).primaryEndpoints.blob,'\nSTO_CTR_NAME=',variables('vmStorageAccountContainerName'),'\nSTO_ACT_KEY=',listKeys(resourceId('Microsoft.Storage/storageAccounts', variables('storageAccountName')), '2018-07-01').keys[0].value,'\nMASTER_KEY=',variables('masterKey'),'\nJOIN_KEY=',variables('joinKey'),'\nIS_PRIMARY=','false','\nLICENSE1=',variables('artifactoryLicense1'),'\nLICENSE2=',variables('artifactoryLicense2'),'\nLICENSE3=',variables('artifactoryLicense3'),'\nLICENSE4=',variables('artifactoryLicense4'),'\nLICENSE5=',variables('artifactoryLicense5'),'\n'))]" - }, - "networkProfile": { - "networkInterfaceConfigurations": [ - { - "name": "[variables('nicMemberName')]", - "properties": { - "primary": true, - "ipConfigurations": [ - { - "name": "[concat(variables('ipConfigName'),'1')]", - "properties": { - "subnet": { - "id": "[resourceId('Microsoft.Network/virtualNetworks/subnets', variables('virtualNetworkName'), variables('subnetMemberName'))]" - }, - "loadBalancerBackendAddressPools": [ - { - "id": "[resourceId('Microsoft.Network/loadBalancers/backendAddressPools', variables('lbName'), variables('bePoolMemberName'))]" - } - ], - "loadBalancerInboundNatPools": [ - { - "id": "[resourceId('Microsoft.Network/loadBalancers/inboundNatPools', variables('lbName'), variables('natPoolMemberName'))]" - } - ] - } - } - ] - } - } - ] - }, - "extensionProfile": { - "extensions": [ - { - "name": "extension1", - "properties": { - "publisher": "Microsoft.Azure.Extensions", - "type": "CustomScript", - "typeHandlerVersion": "2.0", - "autoUpgradeMinorVersion": false, - "settings": { - "fileUris": [ - "[uri(parameters('_artifactsLocation'), concat('scripts/install_artifactory.sh', parameters('_artifactsLocationSasToken')))]", - "[uri(parameters('_artifactsLocation'), concat('scripts/install_artifactory7.sh', parameters('_artifactsLocationSasToken')))]", - "[uri(parameters('_artifactsLocation'), concat('scripts/version_selector.sh', parameters('_artifactsLocationSasToken')))]" - ] - }, - "protectedSettings": { - "commandToExecute": "bash version_selector.sh && ls -al && pwd >> /var/lib/cloud/instance/user-data.txt" - } - } - } - ] - } - } - } - } - ], - "outputs": { - "fqdn": { - "value": "[reference(resourceId('Microsoft.Network/publicIPAddresses',variables('pipMemberName')),'2018-07-01').dnsSettings.fqdn]", - "type": "string" - } - } -} \ No newline at end of file diff --git a/AzureResourceManager/azuredeploy.parameters.json b/AzureResourceManager/azuredeploy.parameters.json deleted file mode 100644 index e5c9929..0000000 --- a/AzureResourceManager/azuredeploy.parameters.json +++ /dev/null @@ -1,39 +0,0 @@ -{ - "$schema": "https://schema.management.azure.com/schemas/2015-01-01/deploymentParameters.json#", - "contentVersion": "1.0.0.0", - "parameters": { - "clusterName": { - "value": "GEN-UNIQUE" - }, - "adminUsername": { - "value": "GEN-UNIQUE" - }, - "adminPassword": { - "value": "GEN-PASSWORD" - }, - "DB_Admin_User": { - "value": "GEN-UNIQUE" - }, - "DB_Admin_Password": { - "value": "GEN-PASSWORD" - }, - "DB_Name": { - "value": "GEN-UNIQUE" - }, - "masterKey": { - "value": "35767fa0164bac66b6cccb8880babefb" - }, - "joinKey": { - "value": "3143bf2aa4db9c00077e0443c84d252e" - }, - "artifactoryLicense1": { - "value": "GEN-UNIQUE" - }, - "artifactoryLicense2": { - "value": "GEN-UNIQUE" - }, - "artifactoryLicense3": { - "value": "GEN-UNIQUE" - } - } -} \ No newline at end of file diff --git a/AzureResourceManager/images/HA_Diagram.png b/AzureResourceManager/images/HA_Diagram.png deleted file mode 100644 index 98cd3ee..0000000 Binary files a/AzureResourceManager/images/HA_Diagram.png and /dev/null differ diff --git a/AzureResourceManager/images/Parameters.png b/AzureResourceManager/images/Parameters.png deleted file mode 100644 index a735cef..0000000 Binary files a/AzureResourceManager/images/Parameters.png and /dev/null differ diff --git a/AzureResourceManager/images/add_licenses.png b/AzureResourceManager/images/add_licenses.png deleted file mode 100644 index 3a06f9d..0000000 Binary files a/AzureResourceManager/images/add_licenses.png and /dev/null differ diff --git a/AzureResourceManager/nested/azureDBDeploy.json b/AzureResourceManager/nested/azureDBDeploy.json deleted file mode 100644 index e107ea0..0000000 --- a/AzureResourceManager/nested/azureDBDeploy.json +++ /dev/null @@ -1,101 +0,0 @@ -{ - "$schema": "http://schema.management.azure.com/schemas/2015-01-01/deploymentTemplate.json#", - "contentVersion": "1.0.0.0", - "parameters": { - "db_user": { - "type": "string", - "minLength": 1, - "defaultValue": "artifactory" - }, - "db_password": { - "type": "securestring", - "defaultValue": "jFrog123" - }, - "db_server": { - "type": "string", - "minLength": 1, - "defaultValue": "artmssqlsrv" - }, - "db_name": { - "type": "string", - "minLength": 1, - "defaultValue": "artdb" - }, - "db_location": { - "type": "string", - "defaultValue": "" - }, - "db_edition": { - "type": "string", - "allowedValues": [ - "Basic", - "Standard", - "Premium" - ] - } - }, - "variables": { - "apiVersion": "2015-05-01-preview", - "rtdbCollation": "Latin1_General_100_CS_AS", - "db_location": "[if(equals(parameters('db_location'), ''), resourceGroup().location, parameters('db_location'))]" - }, - "resources": [ - { - "name": "[parameters('db_server')]", - "type": "Microsoft.Sql/servers", - "kind": "v12.0", - "location": "[variables('db_location')]", - "apiVersion": "[variables('apiVersion')]", - "dependsOn": [ - - ], - "tags": { - "displayName": "artifactoryDB" - }, - "properties": { - "administratorLogin": "[parameters('db_user')]", - "administratorLoginPassword": "[parameters('db_password')]", - "version": "12.0" - }, - "resources": [ - { - "name": "[uniqueString(parameters('db_server'), 'AllowAllWindowsAzureIps' )]", - "type": "firewallrules", - "location": "[variables('db_location')]", - "apiVersion": "[variables('apiVersion')]", - "dependsOn": [ - "[concat('Microsoft.Sql/servers/', parameters('db_server'))]" - ], - "properties": { - "startIpAddress": "0.0.0.0", - "endIpAddress": "0.0.0.0" - } - }, - { - "name": "[parameters('db_name')]", - "type": "databases", - "kind": "v12.0,user", - "location": "[variables('db_location')]", - "apiVersion": "[variables('apiVersion')]", - "dependsOn": [ - "[parameters('db_server')]" - ], - "tags": { - "displayName": "artifactoryDB" - }, - "properties": { - "edition": "[parameters('db_edition')]", - "maxSizeBytes": "1073741824", - "collation": "[variables('rtdbCollation')]" - } - } - ] - } - ], - "outputs": { - "jdbcConnString": { - "type": "string", - "value": "[concat('jdbc:sqlserver://', reference(concat('Microsoft.Sql/servers/', parameters('db_server'))).fullyQualifiedDomainName, ':1433')]" - } - } -} diff --git a/AzureResourceManager/scripts/install_artifactory.sh b/AzureResourceManager/scripts/install_artifactory.sh deleted file mode 100644 index 12238a9..0000000 --- a/AzureResourceManager/scripts/install_artifactory.sh +++ /dev/null @@ -1,214 +0,0 @@ -#!/bin/bash -DB_URL=$(cat /var/lib/cloud/instance/user-data.txt | grep "^JDBC_STR" | sed "s/JDBC_STR=//") -DB_NAME=$(cat /var/lib/cloud/instance/user-data.txt | grep "^DB_NAME=" | sed "s/DB_NAME=//") -DB_USER=$(cat /var/lib/cloud/instance/user-data.txt | grep "^DB_ADMIN_USER=" | sed "s/DB_ADMIN_USER=//") -DB_PASSWORD=$(cat /var/lib/cloud/instance/user-data.txt | grep "^DB_ADMIN_PASSWD=" | sed "s/DB_ADMIN_PASSWD=//") -STORAGE_ACCT=$(cat /var/lib/cloud/instance/user-data.txt | grep "^STO_ACT_NAME=" | sed "s/STO_ACT_NAME=//") -STORAGE_CONTAINER=$(cat /var/lib/cloud/instance/user-data.txt | grep "^STO_CTR_NAME=" | sed "s/STO_CTR_NAME=//") -STORAGE_ACCT_KEY=$(cat /var/lib/cloud/instance/user-data.txt | grep "^STO_ACT_KEY=" | sed "s/STO_ACT_KEY=//") -ARTIFACTORY_VERSION=$(cat /var/lib/cloud/instance/user-data.txt | grep "^ARTIFACTORY_VERSION=" | sed "s/ARTIFACTORY_VERSION=//") -MASTER_KEY=$(cat /var/lib/cloud/instance/user-data.txt | grep "^MASTER_KEY=" | sed "s/MASTER_KEY=//") -IS_PRIMARY=$(cat /var/lib/cloud/instance/user-data.txt | grep "^IS_PRIMARY=" | sed "s/IS_PRIMARY=//") -ARTIFACTORY_LICENSE_1=$(cat /var/lib/cloud/instance/user-data.txt | grep "^LICENSE1=" | sed "s/LICENSE1=//") -ARTIFACTORY_LICENSE_2=$(cat /var/lib/cloud/instance/user-data.txt | grep "^LICENSE2=" | sed "s/LICENSE2=//") -ARTIFACTORY_LICENSE_3=$(cat /var/lib/cloud/instance/user-data.txt | grep "^LICENSE3=" | sed "s/LICENSE3=//") -ARTIFACTORY_LICENSE_4=$(cat /var/lib/cloud/instance/user-data.txt | grep "^LICENSE4=" | sed "s/LICENSE4=//") -ARTIFACTORY_LICENSE_5=$(cat /var/lib/cloud/instance/user-data.txt | grep "^LICENSE5=" | sed "s/LICENSE5=//") - -UBUNTU_CODENAME=$(cat /etc/lsb-release | grep "^DISTRIB_CODENAME=" | sed "s/DISTRIB_CODENAME=//") - -export DEBIAN_FRONTEND=noninteractive - -#Generate Self-Signed Cert -mkdir -p /etc/pki/tls/private/ /etc/pki/tls/certs/ -openssl req -nodes -x509 -newkey rsa:4096 -keyout /etc/pki/tls/private/example.key -out /etc/pki/tls/certs/example.pem -days 356 -subj "/C=US/ST=California/L=SantaClara/O=IT/CN=*.localhost" - -CERTIFICATE_DOMAIN=$(cat /var/lib/cloud/instance/user-data.txt | grep "^CERTIFICATE_DOMAIN=" | sed "s/CERTIFICATE_DOMAIN=//") -[ -z "$CERTIFICATE_DOMAIN" ] && CERTIFICATE_DOMAIN=artifactory - -ARTIFACTORY_SERVER_NAME=$(cat /var/lib/cloud/instance/user-data.txt | grep "^ARTIFACTORY_SERVER_NAME=" | sed "s/ARTIFACTORY_SERVER_NAME=//") -[ -z "$ARTIFACTORY_SERVER_NAME" ] && ARTIFACTORY_SERVER_NAME=artifactory - -#Configuring nginx -rm /etc/nginx/sites-enabled/default - -cat </etc/nginx/nginx.conf - #user nobody; - worker_processes 1; - error_log /var/log/nginx/error.log info; - #pid logs/nginx.pid; - events { - worker_connections 1024; - } - - http { - include mime.types; - variables_hash_max_size 1024; - variables_hash_bucket_size 64; - server_names_hash_max_size 4096; - server_names_hash_bucket_size 128; - types_hash_max_size 2048; - types_hash_bucket_size 64; - proxy_read_timeout 2400s; - client_header_timeout 2400s; - client_body_timeout 2400s; - proxy_connect_timeout 75s; - proxy_send_timeout 2400s; - proxy_buffer_size 32k; - proxy_buffers 40 32k; - proxy_busy_buffers_size 64k; - proxy_temp_file_write_size 250m; - proxy_http_version 1.1; - client_body_buffer_size 128k; - - include /etc/nginx/conf.d/*.conf; - default_type application/octet-stream; - log_format main '$remote_addr - $remote_user [$time_local] "$request" ' - '$status $body_bytes_sent "$http_referer" ' - '"$http_user_agent" "$http_x_forwarded_for"'; - access_log /var/log/nginx/access.log main; - sendfile on; - #tcp_nopush on; - #keepalive_timeout 0; - keepalive_timeout 65; - } -EOF - -cat </etc/nginx/conf.d/artifactory.conf -ssl_certificate /etc/pki/tls/certs/cert.pem; -ssl_certificate_key /etc/pki/tls/private/cert.key; -ssl_session_cache shared:SSL:1m; -ssl_prefer_server_ciphers on; -## server configuration -server { - listen 443 ssl; - listen 80 ; - server_name ~(?.+)\\.${CERTIFICATE_DOMAIN} artifactory ${ARTIFACTORY_SERVER_NAME}.${CERTIFICATE_DOMAIN}; - if (\$http_x_forwarded_proto = '') { - set \$http_x_forwarded_proto \$scheme; - } - ## Application specific logs - ## access_log /var/log/nginx/artifactory-access.log timing; - ## error_log /var/log/nginx/artifactory-error.log; - rewrite ^/$ /artifactory/webapp/ redirect; - rewrite ^/artifactory/?(/webapp)?$ /artifactory/webapp/ redirect; - rewrite ^/(v1|v2)/(.*) /artifactory/api/docker/\$repo/\$1/\$2; - chunked_transfer_encoding on; - client_max_body_size 0; - location /artifactory/ { - proxy_read_timeout 2400; - proxy_pass_header Server; - proxy_cookie_path ~*^/.* /; - proxy_pass http://127.0.0.1:8081/artifactory/; - proxy_set_header X-Artifactory-Override-Base-Url - \$http_x_forwarded_proto://\$host:\$server_port/artifactory; - proxy_set_header X-Forwarded-Port \$server_port; - proxy_set_header X-Forwarded-Proto \$http_x_forwarded_proto; - proxy_set_header Host \$http_host; - proxy_set_header X-Forwarded-For \$proxy_add_x_forwarded_for; - } -} -EOF - -cat </var/opt/jfrog/artifactory/etc/artifactory.cluster.license -${ARTIFACTORY_LICENSE_1} - -${ARTIFACTORY_LICENSE_2} - -${ARTIFACTORY_LICENSE_3} - -${ARTIFACTORY_LICENSE_4} - -${ARTIFACTORY_LICENSE_5} -EOF - -cat </var/opt/jfrog/artifactory/etc/ha-node.properties -node.id=art1 -artifactory.ha.data.dir=/var/opt/jfrog/artifactory/data -context.url=http://127.0.0.1:8081/artifactory -membership.port=10001 -hazelcast.interface=172.25.0.3 -primary=${IS_PRIMARY} -EOF - -cat </var/opt/jfrog/artifactory/etc/db.properties -type=mssql -driver=com.microsoft.sqlserver.jdbc.SQLServerDriver -url=${DB_URL};databaseName=${DB_NAME};sendStringParametersAsUnicode=false;applicationName=Artifactory Binary Repository -username=${DB_USER} -password=${DB_PASSWORD} -EOF - -mkdir -p /var/opt/jfrog/artifactory/etc/security - -cat </var/opt/jfrog/artifactory/etc/security/master.key -${MASTER_KEY} -EOF - -cat </var/opt/jfrog/artifactory/etc/binarystore.xml - - - - - - - - - - - - - - - - - crossNetworkStrategy - crossNetworkStrategy - 2 - 1 - - - - - remote - - - - local - - - - - ${STORAGE_ACCT} - ${STORAGE_ACCT_KEY} - https://${STORAGE_ACCT}.blob.core.windows.net/ - ${STORAGE_CONTAINER} - - -EOF - - -HOSTNAME=$(hostname -i) -sed -i -e "s/art1/art-$(date +%s$RANDOM)/" /var/opt/jfrog/artifactory/etc/ha-node.properties -sed -i -e "s/127.0.0.1/$HOSTNAME/" /var/opt/jfrog/artifactory/etc/ha-node.properties -sed -i -e "s/172.25.0.3/$HOSTNAME/" /var/opt/jfrog/artifactory/etc/ha-node.properties - -cat /var/lib/cloud/instance/user-data.txt | grep "^CERTIFICATE=" | sed "s/CERTIFICATE=//" > /tmp/temp.pem -cat /tmp/temp.pem | sed 's/CERTIFICATE----- /&\n/g' | sed 's/ -----END/\n-----END/g' | awk '{if($0 ~ /----/) {print;} else { gsub(/ /,"\n");print;}}' > /etc/pki/tls/certs/cert.pem -rm /tmp/temp.pem - -cat /var/lib/cloud/instance/user-data.txt | grep "^CERTIFICATE_KEY=" | sed "s/CERTIFICATE_KEY=//" > /tmp/temp.key -cat /tmp/temp.key | sed 's/KEY----- /&\n/' | sed 's/ -----END/\n-----END/' | awk '{if($0 ~ /----/) {print;} else { gsub(/ /,"\n");print;}}' > /etc/pki/tls/private/cert.key -rm /tmp/temp.key - -EXTRA_JAVA_OPTS=$(cat /var/lib/cloud/instance/user-data.txt | grep "^EXTRA_JAVA_OPTS=" | sed "s/EXTRA_JAVA_OPTS=//") -[ -z "$EXTRA_JAVA_OPTS" ] && EXTRA_JAVA_OPTS='-server -Xms2g -Xmx6g -Xss256k -XX:+UseG1GC -XX:OnOutOfMemoryError="kill -9 %p"' -echo "export JAVA_OPTIONS=\"${EXTRA_JAVA_OPTS}\"" >> /var/opt/jfrog/artifactory/etc/default -chown artifactory:artifactory -R /var/opt/jfrog/artifactory/* && chown artifactory:artifactory -R /var/opt/jfrog/artifactory/etc/security && chown artifactory:artifactory -R /var/opt/jfrog/artifactory/etc/* - -# start Artifactory -sleep $((RANDOM % 120)) -service artifactory start -service nginx start -nginx -s reload -echo "INFO: Artifactory installation completed." diff --git a/AzureResourceManager/scripts/install_artifactory7.sh b/AzureResourceManager/scripts/install_artifactory7.sh deleted file mode 100644 index 00d1dc2..0000000 --- a/AzureResourceManager/scripts/install_artifactory7.sh +++ /dev/null @@ -1,199 +0,0 @@ -#!/bin/bash -DB_URL=$(cat /var/lib/cloud/instance/user-data.txt | grep "^JDBC_STR" | sed "s/JDBC_STR=//") -DB_NAME=$(cat /var/lib/cloud/instance/user-data.txt | grep "^DB_NAME=" | sed "s/DB_NAME=//") -DB_USER=$(cat /var/lib/cloud/instance/user-data.txt | grep "^DB_ADMIN_USER=" | sed "s/DB_ADMIN_USER=//") -DB_PASSWORD=$(cat /var/lib/cloud/instance/user-data.txt | grep "^DB_ADMIN_PASSWD=" | sed "s/DB_ADMIN_PASSWD=//") -STORAGE_ACCT=$(cat /var/lib/cloud/instance/user-data.txt | grep "^STO_ACT_NAME=" | sed "s/STO_ACT_NAME=//") -STORAGE_CONTAINER=$(cat /var/lib/cloud/instance/user-data.txt | grep "^STO_CTR_NAME=" | sed "s/STO_CTR_NAME=//") -STORAGE_ACCT_KEY=$(cat /var/lib/cloud/instance/user-data.txt | grep "^STO_ACT_KEY=" | sed "s/STO_ACT_KEY=//") -ARTIFACTORY_VERSION=$(cat /var/lib/cloud/instance/user-data.txt | grep "^ARTIFACTORY_VERSION=" | sed "s/ARTIFACTORY_VERSION=//") -MASTER_KEY=$(cat /var/lib/cloud/instance/user-data.txt | grep "^MASTER_KEY=" | sed "s/MASTER_KEY=//") -IS_PRIMARY=$(cat /var/lib/cloud/instance/user-data.txt | grep "^IS_PRIMARY=" | sed "s/IS_PRIMARY=//") -ARTIFACTORY_LICENSE_1=$(cat /var/lib/cloud/instance/user-data.txt | grep "^LICENSE1=" | sed "s/LICENSE1=//") -ARTIFACTORY_LICENSE_2=$(cat /var/lib/cloud/instance/user-data.txt | grep "^LICENSE2=" | sed "s/LICENSE2=//") -ARTIFACTORY_LICENSE_3=$(cat /var/lib/cloud/instance/user-data.txt | grep "^LICENSE3=" | sed "s/LICENSE3=//") -ARTIFACTORY_LICENSE_4=$(cat /var/lib/cloud/instance/user-data.txt | grep "^LICENSE4=" | sed "s/LICENSE4=//") -ARTIFACTORY_LICENSE_5=$(cat /var/lib/cloud/instance/user-data.txt | grep "^LICENSE5=" | sed "s/LICENSE5=//") -export DEBIAN_FRONTEND=noninteractive - -#Generate Self-Signed Cert -mkdir -p /etc/pki/tls/private/ /etc/pki/tls/certs/ -openssl req -nodes -x509 -newkey rsa:4096 -keyout /etc/pki/tls/private/example.key -out /etc/pki/tls/certs/example.pem -days 356 -subj "/C=US/ST=California/L=SantaClara/O=IT/CN=*.localhost" - -CERTIFICATE_DOMAIN=$(cat /var/lib/cloud/instance/user-data.txt | grep "^CERTIFICATE_DOMAIN=" | sed "s/CERTIFICATE_DOMAIN=//") -[ -z "$CERTIFICATE_DOMAIN" ] && CERTIFICATE_DOMAIN=artifactory - -ARTIFACTORY_SERVER_NAME=$(cat /var/lib/cloud/instance/user-data.txt | grep "^ARTIFACTORY_SERVER_NAME=" | sed "s/ARTIFACTORY_SERVER_NAME=//") -[ -z "$ARTIFACTORY_SERVER_NAME" ] && ARTIFACTORY_SERVER_NAME=artifactory - -#Configuring nginx -rm /etc/nginx/sites-enabled/default - -cat </etc/nginx/nginx.conf - #user nobody; - worker_processes 1; - error_log /var/log/nginx/error.log info; - #pid logs/nginx.pid; - events { - worker_connections 1024; - } - - http { - include mime.types; - variables_hash_max_size 1024; - variables_hash_bucket_size 64; - server_names_hash_max_size 4096; - server_names_hash_bucket_size 128; - types_hash_max_size 2048; - types_hash_bucket_size 64; - proxy_read_timeout 2400s; - client_header_timeout 2400s; - client_body_timeout 2400s; - proxy_connect_timeout 75s; - proxy_send_timeout 2400s; - proxy_buffer_size 32k; - proxy_buffers 40 32k; - proxy_busy_buffers_size 64k; - proxy_temp_file_write_size 250m; - proxy_http_version 1.1; - client_body_buffer_size 128k; - - include /etc/nginx/conf.d/*.conf; - default_type application/octet-stream; - log_format main '$remote_addr - $remote_user [$time_local] "$request" ' - '$status $body_bytes_sent "$http_referer" ' - '"$http_user_agent" "$http_x_forwarded_for"'; - access_log /var/log/nginx/access.log main; - sendfile on; - #tcp_nopush on; - #keepalive_timeout 0; - keepalive_timeout 65; - } -EOF - -cat </etc/nginx/conf.d/artifactory.conf -ssl_protocols TLSv1 TLSv1.1 TLSv1.2; -ssl_certificate /etc/pki/tls/certs/cert.pem; -ssl_certificate_key /etc/pki/tls/private/cert.key; -ssl_session_cache shared:SSL:1m; -ssl_prefer_server_ciphers on; -## server configuration -server { - listen 443 ssl; - listen 80 ; - server_name ~(?.+)\\.${CERTIFICATE_DOMAIN} artifactory ${ARTIFACTORY_SERVER_NAME}.${CERTIFICATE_DOMAIN}; - if (\$http_x_forwarded_proto = '') { - set \$http_x_forwarded_proto \$scheme; - } - ## Application specific logs - ## access_log /var/log/nginx/artifactory-access.log timing; - ## error_log /var/log/nginx/artifactory-error.log; - rewrite ^/$ /ui/ redirect; - rewrite ^/ui$ /ui/ redirect; - chunked_transfer_encoding on; - client_max_body_size 0; - location / { - proxy_read_timeout 2400; - proxy_pass_header Server; - proxy_cookie_path ~*^/.* /; - proxy_pass http://127.0.0.1:8082; - proxy_next_upstream error timeout non_idempotent; - proxy_next_upstream_tries 1; - proxy_set_header X-JFrog-Override-Base-Url \$http_x_forwarded_proto://\$host:\$server_port; - proxy_set_header X-Forwarded-Port \$server_port; - proxy_set_header X-Forwarded-Proto \$http_x_forwarded_proto; - proxy_set_header Host \$http_host; - proxy_set_header X-Forwarded-For \$proxy_add_x_forwarded_for; - - location ~ ^/artifactory/ { - proxy_pass http://127.0.0.1:8081; - } - } -} -EOF - - -mkdir -p /opt/jfrog/artifactory/var/etc/artifactory/ -cat </opt/jfrog/artifactory/var/etc/artifactory/artifactory.cluster.license -${ARTIFACTORY_LICENSE_1} - -${ARTIFACTORY_LICENSE_2} - -${ARTIFACTORY_LICENSE_3} - -${ARTIFACTORY_LICENSE_4} - -${ARTIFACTORY_LICENSE_5} -EOF - -HOSTNAME=$(ip route get 8.8.8.8 | awk '{print $NF; exit}') - -if [ "${IS_PRIMARY}" = "true" ]; then - NODE_NAME=art-primary -else - NODE_NAME=art-$(date +%s$RANDOM) -fi - -# Java options -EXTRA_JAVA_OPTS=$(cat /var/lib/cloud/instance/user-data.txt | grep "^EXTRA_JAVA_OPTS=" | sed "s/EXTRA_JAVA_OPTS=//") -sed -i -e "s/#extraJavaOpts: \"-Xms512m -Xmx2g\"/extraJavaOpts: ${EXTRA_JAVA_OPTS}/" /var/opt/jfrog/artifactory/etc/system.yaml - -# Node settings -HOSTNAME=$(hostname -i) -sed -i -e "s/#id: \"art1\"/id: \"${NODE_NAME}\"/" /var/opt/jfrog/artifactory/etc/system.yaml -sed -i -e "s/#ip:/ip: ${HOSTNAME}/" /var/opt/jfrog/artifactory/etc/system.yaml -sed -i -e "s/#primary: true/primary: ${IS_PRIMARY}/" /var/opt/jfrog/artifactory/etc/system.yaml -sed -i -e "s/#haEnabled:/haEnabled:/" /var/opt/jfrog/artifactory/etc/system.yaml - -# Set MS SQL configuration -cat <>/var/opt/jfrog/artifactory/etc/system.yaml - ## One of: mysql, oracle, mssql, postgresql, mariadb - ## Default: Embedded derby - ## Example for mysql - type: mssql - driver: com.microsoft.sqlserver.jdbc.SQLServerDriver - url: ${DB_URL};databaseName=${DB_NAME};sendStringParametersAsUnicode=false;applicationName=Artifactory Binary Repository - username: ${DB_USER} - password: ${DB_PASSWORD} - -EOF - -# Create master.key on each node -mkdir -p /opt/jfrog/artifactory/var/etc/security/ -cat </opt/jfrog/artifactory/var/etc/security/master.key -${MASTER_KEY} -EOF - -# Azure Blob Storage configuration -# https://www.jfrog.com/confluence/display/JFROG/Configuring+the+Filestore#ConfiguringtheFilestore-AzureBlobStorageClusterBinaryProvider -mkdir -p /var/opt/jfrog/artifactory/etc/artifactory/ -cat </var/opt/jfrog/artifactory/etc/artifactory/binarystore.xml - - - - ${STORAGE_ACCT} - ${STORAGE_ACCT_KEY} - https://${STORAGE_ACCT}.blob.core.windows.net/ - ${STORAGE_CONTAINER} - - -EOF - - -cat /var/lib/cloud/instance/user-data.txt | grep "^CERTIFICATE=" | sed "s/CERTIFICATE=//" > /tmp/temp.pem -cat /tmp/temp.pem | sed 's/CERTIFICATE----- /&\n/g' | sed 's/ -----END/\n-----END/g' | awk '{if($0 ~ /----/) {print;} else { gsub(/ /,"\n");print;}}' > /etc/pki/tls/certs/cert.pem -rm /tmp/temp.pem - -cat /var/lib/cloud/instance/user-data.txt | grep "^CERTIFICATE_KEY=" | sed "s/CERTIFICATE_KEY=//" > /tmp/temp.key -cat /tmp/temp.key | sed 's/KEY----- /&\n/' | sed 's/ -----END/\n-----END/' | awk '{if($0 ~ /----/) {print;} else { gsub(/ /,"\n");print;}}' > /etc/pki/tls/private/cert.key -rm /tmp/temp.key - -chown artifactory:artifactory -R /var/opt/jfrog/artifactory/* && chown artifactory:artifactory -R /var/opt/jfrog/artifactory/etc/security && chown artifactory:artifactory -R /var/opt/jfrog/artifactory/etc/* - -# start Artifactory -sleep 120 -systemctl start artifactory -systemctl start nginx -nginx -s reload -echo "INFO: Artifactory HA installation completed." -echo "" diff --git a/AzureResourceManager/scripts/version_selector.sh b/AzureResourceManager/scripts/version_selector.sh deleted file mode 100644 index 13526b2..0000000 --- a/AzureResourceManager/scripts/version_selector.sh +++ /dev/null @@ -1,13 +0,0 @@ -#!/bin/bash -ARTIFACTORY_VERSION=$(cat /var/lib/cloud/instance/user-data.txt | grep "^ARTIFACTORY_VERSION=" | sed "s/ARTIFACTORY_VERSION=//") -IFS=$'\t' -SUPPORTED_VERSIONS=("6.8.0\t6.11.3\t6.15.0\t0.16.0\t0.17.0\t6.18.0") -unset IFS - -if [[ "\t${SUPPORTED_VERSIONS[@]}\t" =~ "\t${ARTIFACTORY_VERSION}\t" ]]; then - sh install_artifactory.sh - echo "\ninstall_artifactory.sh was selected" >> user-data.txt -else - sh install_artifactory7.sh - echo "\ninstall_artifactory7.sh was selected" >> user-data.txt -fi \ No newline at end of file diff --git a/JFrogContainerRegistry/AzureResourceManager/LICENSE b/JFrogContainerRegistry/AzureResourceManager/LICENSE deleted file mode 100644 index 261eeb9..0000000 --- a/JFrogContainerRegistry/AzureResourceManager/LICENSE +++ /dev/null @@ -1,201 +0,0 @@ - Apache License - Version 2.0, January 2004 - http://www.apache.org/licenses/ - - TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION - - 1. Definitions. - - "License" shall mean the terms and conditions for use, reproduction, - and distribution as defined by Sections 1 through 9 of this document. - - "Licensor" shall mean the copyright owner or entity authorized by - the copyright owner that is granting the License. - - "Legal Entity" shall mean the union of the acting entity and all - other entities that control, are controlled by, or are under common - control with that entity. For the purposes of this definition, - "control" means (i) the power, direct or indirect, to cause the - direction or management of such entity, whether by contract or - otherwise, or (ii) ownership of fifty percent (50%) or more of the - outstanding shares, or (iii) beneficial ownership of such entity. - - "You" (or "Your") shall mean an individual or Legal Entity - exercising permissions granted by this License. - - "Source" form shall mean the preferred form for making modifications, - including but not limited to software source code, documentation - source, and configuration files. - - "Object" form shall mean any form resulting from mechanical - transformation or translation of a Source form, including but - not limited to compiled object code, generated documentation, - and conversions to other media types. - - "Work" shall mean the work of authorship, whether in Source or - Object form, made available under the License, as indicated by a - copyright notice that is included in or attached to the work - (an example is provided in the Appendix below). - - "Derivative Works" shall mean any work, whether in Source or Object - form, that is based on (or derived from) the Work and for which the - editorial revisions, annotations, elaborations, or other modifications - represent, as a whole, an original work of authorship. For the purposes - of this License, Derivative Works shall not include works that remain - separable from, or merely link (or bind by name) to the interfaces of, - the Work and Derivative Works thereof. - - "Contribution" shall mean any work of authorship, including - the original version of the Work and any modifications or additions - to that Work or Derivative Works thereof, that is intentionally - submitted to Licensor for inclusion in the Work by the copyright owner - or by an individual or Legal Entity authorized to submit on behalf of - the copyright owner. For the purposes of this definition, "submitted" - means any form of electronic, verbal, or written communication sent - to the Licensor or its representatives, including but not limited to - communication on electronic mailing lists, source code control systems, - and issue tracking systems that are managed by, or on behalf of, the - Licensor for the purpose of discussing and improving the Work, but - excluding communication that is conspicuously marked or otherwise - designated in writing by the copyright owner as "Not a Contribution." - - "Contributor" shall mean Licensor and any individual or Legal Entity - on behalf of whom a Contribution has been received by Licensor and - subsequently incorporated within the Work. - - 2. Grant of Copyright License. Subject to the terms and conditions of - this License, each Contributor hereby grants to You a perpetual, - worldwide, non-exclusive, no-charge, royalty-free, irrevocable - copyright license to reproduce, prepare Derivative Works of, - publicly display, publicly perform, sublicense, and distribute the - Work and such Derivative Works in Source or Object form. - - 3. Grant of Patent License. Subject to the terms and conditions of - this License, each Contributor hereby grants to You a perpetual, - worldwide, non-exclusive, no-charge, royalty-free, irrevocable - (except as stated in this section) patent license to make, have made, - use, offer to sell, sell, import, and otherwise transfer the Work, - where such license applies only to those patent claims licensable - by such Contributor that are necessarily infringed by their - Contribution(s) alone or by combination of their Contribution(s) - with the Work to which such Contribution(s) was submitted. If You - institute patent litigation against any entity (including a - cross-claim or counterclaim in a lawsuit) alleging that the Work - or a Contribution incorporated within the Work constitutes direct - or contributory patent infringement, then any patent licenses - granted to You under this License for that Work shall terminate - as of the date such litigation is filed. - - 4. Redistribution. You may reproduce and distribute copies of the - Work or Derivative Works thereof in any medium, with or without - modifications, and in Source or Object form, provided that You - meet the following conditions: - - (a) You must give any other recipients of the Work or - Derivative Works a copy of this License; and - - (b) You must cause any modified files to carry prominent notices - stating that You changed the files; and - - (c) You must retain, in the Source form of any Derivative Works - that You distribute, all copyright, patent, trademark, and - attribution notices from the Source form of the Work, - excluding those notices that do not pertain to any part of - the Derivative Works; and - - (d) If the Work includes a "NOTICE" text file as part of its - distribution, then any Derivative Works that You distribute must - include a readable copy of the attribution notices contained - within such NOTICE file, excluding those notices that do not - pertain to any part of the Derivative Works, in at least one - of the following places: within a NOTICE text file distributed - as part of the Derivative Works; within the Source form or - documentation, if provided along with the Derivative Works; or, - within a display generated by the Derivative Works, if and - wherever such third-party notices normally appear. The contents - of the NOTICE file are for informational purposes only and - do not modify the License. You may add Your own attribution - notices within Derivative Works that You distribute, alongside - or as an addendum to the NOTICE text from the Work, provided - that such additional attribution notices cannot be construed - as modifying the License. - - You may add Your own copyright statement to Your modifications and - may provide additional or different license terms and conditions - for use, reproduction, or distribution of Your modifications, or - for any such Derivative Works as a whole, provided Your use, - reproduction, and distribution of the Work otherwise complies with - the conditions stated in this License. - - 5. Submission of Contributions. Unless You explicitly state otherwise, - any Contribution intentionally submitted for inclusion in the Work - by You to the Licensor shall be under the terms and conditions of - this License, without any additional terms or conditions. - Notwithstanding the above, nothing herein shall supersede or modify - the terms of any separate license agreement you may have executed - with Licensor regarding such Contributions. - - 6. Trademarks. This License does not grant permission to use the trade - names, trademarks, service marks, or product names of the Licensor, - except as required for reasonable and customary use in describing the - origin of the Work and reproducing the content of the NOTICE file. - - 7. Disclaimer of Warranty. Unless required by applicable law or - agreed to in writing, Licensor provides the Work (and each - Contributor provides its Contributions) on an "AS IS" BASIS, - WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or - implied, including, without limitation, any warranties or conditions - of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A - PARTICULAR PURPOSE. You are solely responsible for determining the - appropriateness of using or redistributing the Work and assume any - risks associated with Your exercise of permissions under this License. - - 8. Limitation of Liability. In no event and under no legal theory, - whether in tort (including negligence), contract, or otherwise, - unless required by applicable law (such as deliberate and grossly - negligent acts) or agreed to in writing, shall any Contributor be - liable to You for damages, including any direct, indirect, special, - incidental, or consequential damages of any character arising as a - result of this License or out of the use or inability to use the - Work (including but not limited to damages for loss of goodwill, - work stoppage, computer failure or malfunction, or any and all - other commercial damages or losses), even if such Contributor - has been advised of the possibility of such damages. - - 9. Accepting Warranty or Additional Liability. While redistributing - the Work or Derivative Works thereof, You may choose to offer, - and charge a fee for, acceptance of support, warranty, indemnity, - or other liability obligations and/or rights consistent with this - License. However, in accepting such obligations, You may act only - on Your own behalf and on Your sole responsibility, not on behalf - of any other Contributor, and only if You agree to indemnify, - defend, and hold each Contributor harmless for any liability - incurred by, or claims asserted against, such Contributor by reason - of your accepting any such warranty or additional liability. - - END OF TERMS AND CONDITIONS - - APPENDIX: How to apply the Apache License to your work. - - To apply the Apache License to your work, attach the following - boilerplate notice, with the fields enclosed by brackets "[]" - replaced with your own identifying information. (Don't include - the brackets!) The text should be enclosed in the appropriate - comment syntax for the file format. We also recommend that a - file or class name and description of purpose be included on the - same "printed page" as the copyright notice for easier - identification within third-party archives. - - Copyright [yyyy] [name of copyright owner] - - Licensed under the Apache License, Version 2.0 (the "License"); - you may not use this file except in compliance with the License. - You may obtain a copy of the License at - - http://www.apache.org/licenses/LICENSE-2.0 - - Unless required by applicable law or agreed to in writing, software - distributed under the License is distributed on an "AS IS" BASIS, - WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. - See the License for the specific language governing permissions and - limitations under the License. diff --git a/JFrogContainerRegistry/AzureResourceManager/MP_submission_6/createUiDefinition.json b/JFrogContainerRegistry/AzureResourceManager/MP_submission_6/createUiDefinition.json deleted file mode 100644 index a0b103d..0000000 --- a/JFrogContainerRegistry/AzureResourceManager/MP_submission_6/createUiDefinition.json +++ /dev/null @@ -1,332 +0,0 @@ -{ - "$schema": "https://schema.management.azure.com/schemas/0.1.2-preview/CreateUIDefinition.MultiVm.json#", - "handler": "Microsoft.Azure.CreateUIDef", - "version": "0.1.2-preview", - "parameters": { - "basics": [ - {} - ], - "steps": [ - { - "name": "vmCredentials", - "label": "VM Credential", - "bladeTitle": "VM Credential", - "subLabel": { - "preValidation": "Provide VM credentials", - "postValidation": "Great - let's move on!" - }, - "elements": [ - { - "name": "adminUsername", - "type": "Microsoft.Compute.UserNameTextBox", - "label": "Admin username", - "osPlatform": "Linux", - "constraints": { - "required": true, - "regex": "^[a-z0-9A-Z]{1,30}$", - "validationMessage": "Only alphanumeric characters are allowed, and the value must be 1-30 characters long." - }, - "toolTip": "Provide admin username for the virtual machine" - }, - { - "name": "adminPassword", - "type": "Microsoft.Compute.CredentialsCombo", - "label": { - "password": "Password", - "confirmPassword": "Confirm password" - }, - "osPlatform": "Linux", - "constraints": { - "required": true, - "customPasswordRegex": "^(?=.*[A-Za-z])(?=.*\\d)(?=.*[@$!%*#?&])[A-Za-z\\d@$!%*#?&]{12,}$", - "customValidationMessage": "The password must contain at least 12 characters, with at least 1 uppercase letter, 1 lowercase letter and 1 number." - }, - "options": { - "hideConfirmation": false - }, - "toolTip": { - "password": "Provide admin password for the virtual machine" - }, - "visible": true - } - ] - }, - { - "name": "clusterConfig", - "label": "JFrog Container Registry Cluster settings", - "subLabel": { - "preValidation": "Configure JFrog Container Registry Cluster settings", - "postValidation": "Done!" - }, - "bladeTitle": "JFrog Container Registry Cluster Settings", - "elements": [ - { - "name": "clusterName", - "type": "Microsoft.Common.TextBox", - "label": "Cluster name", - "toolTip": "Cluster name", - "defaultValue": "", - "constraints": { - "required": true, - "regex": "^[a-z0-9A-Z]{1,30}$", - "validationMessage": "Only alphanumeric characters are allowed, and the value must be 1-30 characters long." - } - }, - { - "name": "vmSku", - "type": "Microsoft.Compute.SizeSelector", - "label": "Virtual machine size", - "toolTip": "The size of the virtual machine for JFrog Container Registry", - "recommendedSizes": [ - "Standard_A2_v2" - ], - "constraints": { - "allowedSizes": [ - "Standard_A2_v2", - "Standard_A4_v2", - "Standard_A4", - "Standard_D2s_v3", - "Standard_D4s_v3", - "Standard_DS2_v2", - "Standard_DS3_v2", - "Standard_D2_v2", - "Standard_D3_v2", - "Standard_DC2s", - "Standard_DC4s" - ] - }, - "osPlatform": "Linux", - "count": 1 - }, - { - "name": "artifactoryVersion", - "type": "Microsoft.Common.DropDown", - "label": "JFrog Container Registry-vm image version to deploy.", - "defaultValue": "0.16.0", - "toolTip": "Version of JFrog Container Registry to dpeloy", - "constraints": { - "allowedValues": [ - { - "label": "6.16.0", - "value": "0.16.0" - } - ], - "required": true - }, - "visible": true - }, - { - "name": "masterKey", - "type": "Microsoft.Common.PasswordBox", - "label": { - "password": "JFrog Container Registry master Key", - "confirmPassword": "Confirm master Key" - }, - "defaultValue": "FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF", - "toolTip": "Master key for JFrog Container Registry cluster. Generate master.key using command '$openssl rand -hex 16'", - "constraints": { - "required": true, - "regex": "^[a-z0-9A-Z]{1,32}$", - "validationMessage": "Only alphanumeric characters are allowed, and the value must be 1-32 characters long." - }, - "options": { - "hideConfirmation": true - } - }, - { - "name": "certificate", - "type": "Microsoft.Common.PasswordBox", - "label": { - "password": "Provide your SSL Certificate.", - "confirmPassword": "Confirm SSL Certificate." - }, - "toolTip": "To use JFrog Container Registry as docker registry you need to provide wild card valid Certificate. Provide your SSL Certificate.", - "constraints": { - "required": true, - "regex": "^(-----BEGIN CERTIFICATE-----)(.+)(-----END CERTIFICATE-----)$", - "validationMessage": "Provide SSL Certificate." - }, - "options": { - "hideConfirmation": true - } - }, - { - "name": "certificateKey", - "type": "Microsoft.Common.PasswordBox", - "label": { - "password": "Provide your SSL Certificate key.", - "confirmPassword": "Confirm SSL Certificate key." - }, - "toolTip": "Provide your SSL Certificate key", - "constraints": { - "required": true, - "regex": "^(-----BEGIN PRIVATE KEY-----)(.+)(-----END PRIVATE KEY-----)$", - "validationMessage": "Provide SSL Certificate Key." - }, - "options": { - "hideConfirmation": true - } - }, - { - "name": "certificateDomain", - "type": "Microsoft.Common.TextBox", - "label": "Provide your Certificate Domain Name.", - "defaultValue": "artifactory", - "toolTip": "Provide your Certificate Domain Name. For e.g jfrog.team for certificate with *.jfrog.team", - "constraints": { - "required": true, - "regex": "^(\\*)*([\\w-\\.])+$", - "validationMessage": "Must be a valid fully-qualified domain name." - } - }, - { - "name": "artifactoryServerName", - "type": "Microsoft.Common.TextBox", - "label": "Provide JFrog Container Registry server name to be used in Nginx.", - "defaultValue": "artifactory", - "toolTip": "Provide JFrog Container Registry server name to be used in Nginx. e.g artifactory for artifactory.jfrog.team", - "constraints": { - "required": true, - "regex": "^[a-z0-9A-Z]{1,20}$", - "validationMessage": "Only letters and numbers are allowed, and the value must be 1-20 characters long." - } - }, - { - "name": "extraJavaOptions", - "type": "Microsoft.Common.TextBox", - "label": "Setting Java Memory Parameters for JFrog Container Registry", - "defaultValue": "-server -Xms512m -Xmx2g -Xss256k -XX:+UseG1GC -XX:OnOutOfMemoryError=\\\"kill -9 %p\\\"", - "toolTip": "Setting Java Memory Parameters for JFrog Container Registry. Learn about system requirements for JFrog Container Registry https://www.jfrog.com/confluence/display/RTF/System+Requirements#SystemRequirements-RecommendedHardware", - "constraints": { - "required": false - } - } - ] - }, - { - "name": "databaseConfig", - "label": "Database Configuration", - "subLabel": { - "preValidation": "Configure the Database", - "postValidation": "Done" - }, - "bladeTitle": "Database Credential", - "elements": [ - { - "name": "dbAdminUsername", - "type": "Microsoft.Compute.UserNameTextBox", - "label": "User name", - "toolTip": "Admin username for the database", - "osPlatform": "Linux", - "constraints": { - "required": true, - "regex": "^[a-z0-9A-Z]{1,30}$", - "validationMessage": "Only alphanumeric characters are allowed, and the value must be 1-30 characters long." - } - }, - { - "name": "dbAdminPassword", - "type": "Microsoft.Common.PasswordBox", - "label": { - "password": "Password", - "confirmPassword": "Confirm password" - }, - "toolTip": "Admin password for the database", - "constraints": { - "required": true, - "regex": "^(?=.*[A-Za-z])(?=.*\\d)(?=.*[@$!%*#?&])[A-Za-z\\d@$!%*#?&]{12,}$", - "validationMessage": "The password must contain at least 12 characters, with at least 1 uppercase letter, 1 lowercase letter and 1 number." - }, - "options": { - "hideConfirmation": false - }, - "visible": true - }, - { - "name": "dbName", - "type": "Microsoft.Common.TextBox", - "label": "Database name", - "toolTip": "Database name", - "constraints": { - "required": true, - "regex": "^[a-z0-9A-Z]{1,15}$", - "validationMessage": "Only alphanumeric characters are allowed, and the value must be 1-15 characters long." - } - }, - { - "name": "dbEdition", - "type": "Microsoft.Common.DropDown", - "label": "Database Edition", - "defaultValue": "Basic", - "toolTip": "Edition of Database to use", - "constraints": { - "allowedValues": [ - { - "label": "Basic", - "value": "Basic" - }, - { - "label": "Standard", - "value": "Standard" - }, - { - "label": "Premium", - "value": "Premium" - } - ], - "required": true - }, - "visible": true - } - ] - }, - { - "name": "storageConfig", - "label": "Storage settings", - "subLabel": { - "preValidation": "Configure the infrastructure settings", - "postValidation": "Done" - }, - "bladeTitle": "Storage settings", - "elements": [ - { - "name": "storageAccountsType", - "type": "Microsoft.Common.DropDown", - "label": "Storage account type", - "defaultValue": "Standard_LRS", - "toolTip": "Storage account type", - "constraints": { - "allowedValues": [ - { - "label": "Standard_LRS", - "value": "Standard_LRS" - } - ], - "required": true - }, - "visible": true - } - ] - } - ], - "outputs": { - "clusterName": "[steps('clusterConfig').clusterName]", - "vmSku": "[steps('clusterConfig').vmSku]", - "location": "[location()]", - "artifactoryVersion": "[steps('clusterConfig').artifactoryVersion]", - "masterKey": "[steps('clusterConfig').masterKey]", - "certificate": "[steps('clusterConfig').certificate]", - "certificateKey": "[steps('clusterConfig').certificateKey]", - "certificateDomain": "[steps('clusterConfig').certificateDomain]", - "artifactoryServerName": "[steps('clusterConfig').artifactoryServerName]", - "extraJavaOptions": "[steps('clusterConfig').extraJavaOptions]", - "adminUsername": "[steps('vmCredentials').adminUsername]", - "adminPassword": "[steps('vmCredentials').adminPassword.password]", - "DB_Admin_User": "[steps('databaseConfig').dbAdminUsername]", - "DB_Admin_Password": "[steps('databaseConfig').dbAdminPassword]", - "DB_Name": "[steps('databaseConfig').dbName]", - "DB_Edition": "[steps('databaseConfig').dbEdition]", - "storageAccountType": "[steps('storageConfig').storageAccountsType]" - } - } -} \ No newline at end of file diff --git a/JFrogContainerRegistry/AzureResourceManager/MP_submission_6/mainTemplate.json b/JFrogContainerRegistry/AzureResourceManager/MP_submission_6/mainTemplate.json deleted file mode 100644 index 08f765c..0000000 --- a/JFrogContainerRegistry/AzureResourceManager/MP_submission_6/mainTemplate.json +++ /dev/null @@ -1,766 +0,0 @@ -{ - "$schema": "https://schema.management.azure.com/schemas/2015-01-01/deploymentTemplate.json#", - "contentVersion": "1.0.0.0", - "parameters": { - "vmSku": { - "type": "string", - "defaultValue": "Standard_A4", - "metadata": { - "description": "Size of VMs in the VM Scale Set." - } - }, - "clusterName": { - "type": "string", - "maxLength": 61, - "metadata": { - "description": "String used as a base for naming resources. Must be 3-61 characters in length and globally unique across Azure. A hash is prepended to this string for some resources, and resource-specific information is appended." - } - }, - "location": { - "type": "string", - "defaultValue": "[resourceGroup().location]", - "metadata": { - "description": "Location for the resources." - } - }, - "artifactoryVersion": { - "type": "string", - "defaultValue": "0.16.0", - "allowedValues": [ - "6.6.0", - "6.6.1", - "6.7.0", - "6.8.0", - "0.16.0" - ], - "metadata": { - "description": "JFrog Container Registry-vm image version to deploy." - } - }, - "masterKey": { - "type": "securestring", - "maxLength": 64, - "metadata": { - "description": "Master key for JFrog Container Registry cluster. Generate master.key using command '$openssl rand -hex 16'" - } - }, - "adminUsername": { - "type": "string", - "metadata": { - "description": "Admin username on all VMs. Follow conventions for azure VM admin user name." - } - }, - "adminPassword": { - "type": "securestring", - "metadata": { - "description": "Admin password on all VMs. Follow conventions for azure VM admin password rules." - } - }, - "certificate": { - "type": "securestring", - "metadata": { - "description": "To use Artifactory as docker registry you need to provide wild card valid Certificate. Provide your SSL Certificate." - } - }, - "certificateKey": { - "type": "securestring", - "metadata": { - "description": "Provide your SSL Certificate key" - } - }, - "certificateDomain": { - "type": "string", - "minLength": 1, - "defaultValue": "artifactory", - "metadata": { - "description": "Provide your Certificate Domain Name. For e.g jfrog.team for certificate with *.jfrog.team" - } - }, - "artifactoryServerName": { - "type": "string", - "minLength": 1, - "defaultValue": "artifactory", - "metadata": { - "description": "Provide artifactory server name to be used in Nginx. e.g artifactory for artifactory.jfrog.team" - } - }, - "extraJavaOptions": { - "type": "string", - "minLength": 1, - "defaultValue": "-server -Xms2g -Xmx12g -Xss256k -XX:+UseG1GC -XX:OnOutOfMemoryError=\\\"kill -9 %p\\\"", - "metadata": { - "description": "Setting Java Memory Parameters for Artifactory. Learn about system requirements for Artifactory https://www.jfrog.com/confluence/display/RTF/System+Requirements#SystemRequirements-RecommendedHardware." - } - }, - "DB_Admin_User": { - "type": "string", - "minLength": 1, - "metadata": { - "description": "Database Admin user name" - } - }, - "DB_Admin_Password": { - "type": "securestring", - "minLength": 1, - "metadata": { - "description": "Database Admin password" - } - }, - "DB_Name": { - "type": "string", - "minLength": 1, - "metadata": { - "description": "Database name" - } - }, - "DB_Edition": { - "type": "string", - "minLength": 1, - "defaultValue": "Basic", - "allowedValues": [ - "Basic", - "Standard", - "Premium" - ], - "metadata": { - "description": "Database Edition" - } - }, - "storageAccountType": { - "type": "string", - "defaultValue": "Standard_LRS", - "allowedValues": [ - "Standard_LRS", - "Standard_GRS", - "Standard_ZRS" - ], - "metadata": { - "description": "Storage Account type" - } - }, - "_artifactsLocation": { - "type": "string", - "metadata": { - "description": "The base URI where artifacts required by this template are located. When the template is deployed using the accompanying scripts, a private location in the subscription will be used and this value will be automatically generated." - }, - "defaultValue": "[deployment().properties.templateLink.uri]" - }, - "_artifactsLocationSasToken": { - "type": "securestring", - "metadata": { - "description": "The sasToken required to access _artifactsLocation. When the template is deployed using the accompanying scripts, a sasToken will be automatically generated." - }, - "defaultValue": "" - } - }, - "variables": { - "namingInfix": "[toLower(substring(concat(parameters('clusterName'), uniqueString(resourceGroup().id)), 0, 9))]", - "addressPrefix": "10.0.0.0/16", - "subnetPrimaryPrefix": "10.0.1.0/24", - "subnetMemberPrefix": "10.0.2.0/24", - "virtualNetworkName": "[concat(variables('namingInfix'), 'vnet')]", - "subnetPrimaryName": "[concat(variables('namingInfix'), 'primarySubnet')]", - "subnetMemberName": "[concat(variables('namingInfix'), 'memberSubnet')]", - "scaleSetPrimaryName": "[concat(variables('namingInfix'), 'primaryScaleset')]", - "lbName": "[concat(variables('namingInfix'), 'lb')]", - "bepoolPrimaryName": "[concat(variables('lbName'), 'primaryBepool')]", - "bepoolMemberName": "[concat(variables('lbName'), 'memberBepool')]", - "fepoolPrimaryName": "[concat(variables('lbName'), 'primaryFepool')]", - "fepoolMemberName": "[concat(variables('lbName'), 'memberFepool')]", - "bepoolPrimaryID": "[resourceId('Microsoft.Network/loadBalancers/backendAddressPools', variables('lbName'), variables('bepoolPrimaryName'))]", - "bepoolMemberID": "[resourceId('Microsoft.Network/loadBalancers/backendAddressPools', variables('lbName'), variables('bepoolMemberName'))]", - "feIpConfigPrimaryName": "[concat(variables('fepoolPrimaryName'), 'primaryIpConfig')]", - "feIpConfigMemberName": "[concat(variables('fepoolMemberName'), 'memberIpConfig')]", - "feIpConfigPrimaryId": "[resourceId('Microsoft.Network/loadBalancers/frontendIpConfigurations', variables('lbName'), variables('feIpConfigPrimaryName'))]", - "feIpConfigMemberId": "[resourceId('Microsoft.Network/loadBalancers/frontendIpConfigurations', variables('lbName'), variables('feIpConfigMemberName'))]", - "pipPrimaryName": "[concat(variables('namingInfix'), 'primaryPip')]", - "pipMemberName": "[concat(variables('namingInfix'), 'memberPip')]", - "nicPrimaryName": "[concat(variables('namingInfix'), 'primaryNic')]", - "nicMemberName": "[concat(variables('namingInfix'), 'memberNic')]", - "natPoolPrimaryName": "[concat(variables('lbName'), 'primaryNatpool')]", - "natPoolMemberName": "[concat(variables('lbName'), 'memberNatpool')]", - "ipConfigName": "[concat(variables('namingInfix'), 'ipconfig')]", - "httpProbePrimaryName": "primaryHttpProbe", - "httpsProbePrimaryName": "primaryHttpsProbe", - "httpProbeMemberName": "memberHttpProbe", - "httpsProbeMemberName": "memberHttpsProbe", - "storageAccountName": "[concat(variables('namingInfix'), 'storage')]", - "vmStorageAccountContainerName": "filestore", - "azureSqlServerName": "[concat(variables('namingInfix'), 'sqlsrv')]", - "DB_Name": "[parameters('DB_Name')]", - "DB_Admin_User": "[parameters('DB_Admin_User')]", - "DB_Admin_Password": "[parameters('DB_Admin_Password')]", - "DB_Edition": "[parameters('DB_Edition')]", - "DB_Location": "[parameters('location')]", - "masterKey": "[parameters('masterKey')]", - "certificate": "[parameters('certificate')]", - "certificateKey": "[parameters('certificateKey')]", - "certificateDomain": "[parameters('certificateDomain')]", - "artifactoryServerName": "[parameters('artifactoryServerName')]", - "extraJavaOptions": "[parameters('extraJavaOptions')]", - "osType": { - "publisher": "jfrog", - "offer": "jfrogcontainerregistry-vm", - "sku": "artifactory-jcr", - "version": "[parameters('artifactoryVersion')]" - }, - "imageReference": "[variables('osType')]", - "dbTemplate": "azureDBDeploy.json", - "dbTemplateLocation": "[uri(parameters('_artifactsLocation'), concat('nested/', variables('dbTemplate'), parameters('_artifactsLocationSasToken')))]", - "nsgName": "[concat(variables('namingInfix'), 'nsg')]" - }, - "resources": [ - { - "apiVersion": "2019-05-01", - "name": "pid-04c1c376-5d4b-4771-9a7f-054f5910dcef", - "type": "Microsoft.Resources/deployments", - "properties": { - "mode": "Incremental", - "template": { - "$schema": "https://schema.management.azure.com/schemas/2015-01-01/deploymentTemplate.json#", - "contentVersion": "1.0.0.0", - "resources": [] - } - } - }, - { - "type": "Microsoft.Network/networkSecurityGroups", - "location": "[parameters('location')]", - "name": "[variables('nsgName')]", - "apiVersion": "2018-07-01", - "properties": { - "securityRules": [ - { - "name": "ssh-rule", - "properties": { - "description": "Allow SSH", - "protocol": "Tcp", - "sourcePortRange": "*", - "destinationPortRange": "22", - "sourceAddressPrefix": "Internet", - "destinationAddressPrefix": "*", - "access": "Allow", - "priority": 100, - "direction": "Inbound" - } - }, - { - "name": "http-artifactory-rule", - "properties": { - "description": "Allow HTTP", - "protocol": "Tcp", - "sourcePortRange": "*", - "destinationPortRange": "8081", - "sourceAddressPrefix": "Internet", - "destinationAddressPrefix": "*", - "access": "Allow", - "priority": 101, - "direction": "Inbound" - } - }, - { - "name": "http-nginx-rule", - "properties": { - "description": "Allow HTTP", - "protocol": "Tcp", - "sourcePortRange": "*", - "destinationPortRange": "80", - "sourceAddressPrefix": "Internet", - "destinationAddressPrefix": "*", - "access": "Allow", - "priority": 102, - "direction": "Inbound" - } - }, - { - "name": "https-nginx-rule", - "properties": { - "description": "Allow HTTP", - "protocol": "Tcp", - "sourcePortRange": "*", - "destinationPortRange": "443", - "sourceAddressPrefix": "Internet", - "destinationAddressPrefix": "*", - "access": "Allow", - "priority": 103, - "direction": "Inbound" - } - }, - { - "name": "membership-rule", - "properties": { - "description": "Allow HTTP", - "protocol": "Tcp", - "sourcePortRange": "*", - "destinationPortRange": "10001", - "sourceAddressPrefix": "Internet", - "destinationAddressPrefix": "*", - "access": "Allow", - "priority": 105, - "direction": "Inbound" - } - } - ] - } - }, - { - "type": "Microsoft.Network/virtualNetworks", - "name": "[variables('virtualNetworkName')]", - "location": "[parameters('location')]", - "apiVersion": "2018-07-01", - "dependsOn": [ - "[concat('Microsoft.Network/networkSecurityGroups/', variables('nsgName'))]" - ], - "properties": { - "addressSpace": { - "addressPrefixes": [ - "[variables('addressPrefix')]" - ] - }, - "subnets": [ - { - "name": "[variables('subnetPrimaryName')]", - "properties": { - "addressPrefix": "[variables('subnetPrimaryPrefix')]", - "networkSecurityGroup": { - "id": "[resourceId('Microsoft.Network/networkSecurityGroups', variables('nsgName'))]" - } - } - }, - { - "name": "[variables('subnetMemberName')]", - "properties": { - "addressPrefix": "[variables('subnetMemberPrefix')]", - "networkSecurityGroup": { - "id": "[resourceId('Microsoft.Network/networkSecurityGroups', variables('nsgName'))]" - } - } - } - ] - } - }, - { - "apiVersion": "2018-07-01", - "type": "Microsoft.Network/networkInterfaces", - "name": "[variables('nicPrimaryName')]", - "location": "[parameters('location')]", - "dependsOn": [ - "[concat('Microsoft.Network/publicIPAddresses/', variables('pipPrimaryName'))]", - "[concat('Microsoft.Network/virtualNetworks/', variables('virtualNetworkName'))]", - "[resourceId('Microsoft.Network/networkSecurityGroups', variables('nsgName'))]" - ], - "properties": { - "ipConfigurations": [ - { - "name": "ipconfig1", - "properties": { - "privateIPAllocationMethod": "Dynamic", - "subnet": { - "id": "[resourceId('Microsoft.Network/virtualNetworks/subnets', variables('virtualNetworkName'), variables('subnetPrimaryName'))]" - } - } - } - ], - "networkSecurityGroup": { - "id": "[resourceId('Microsoft.Network/networkSecurityGroups', variables('nsgName'))]" - } - } - }, - { - "apiVersion": "2018-07-01", - "type": "Microsoft.Network/networkInterfaces", - "name": "[variables('nicMemberName')]", - "location": "[parameters('location')]", - "dependsOn": [ - "[concat('Microsoft.Network/publicIPAddresses/', variables('pipMemberName'))]", - "[concat('Microsoft.Network/virtualNetworks/', variables('virtualNetworkName'))]", - "[resourceId('Microsoft.Network/networkSecurityGroups', variables('nsgName'))]" - ], - "properties": { - "ipConfigurations": [ - { - "name": "ipconfig1", - "properties": { - "privateIPAllocationMethod": "Dynamic", - "subnet": { - "id": "[resourceId('Microsoft.Network/virtualNetworks/subnets', variables('virtualNetworkName'), variables('subnetMemberName'))]" - } - } - } - ], - "networkSecurityGroup": { - "id": "[resourceId('Microsoft.Network/networkSecurityGroups', variables('nsgName'))]" - } - } - }, - { - "type": "Microsoft.Network/publicIPAddresses", - "name": "[variables('pipPrimaryName')]", - "location": "[parameters('location')]", - "sku": { - "name": "Standard" - }, - "apiVersion": "2018-07-01", - "properties": { - "publicIPAllocationMethod": "Static", - "dnsSettings": { - "domainNameLabel": "[variables('namingInfix')]" - } - } - }, - { - "type": "Microsoft.Network/publicIPAddresses", - "name": "[variables('pipMemberName')]", - "location": "[parameters('location')]", - "sku": { - "name": "Standard" - }, - "apiVersion": "2018-07-01", - "properties": { - "publicIPAllocationMethod": "Static", - "dnsSettings": { - "domainNameLabel": "[concat(variables('namingInfix'),'2')]" - } - } - }, - { - "type": "Microsoft.Network/loadBalancers", - "name": "[variables('lbName')]", - "location": "[parameters('location')]", - "apiVersion": "2018-07-01", - "sku": { - "name": "Standard" - }, - "dependsOn": [ - "[concat('Microsoft.Network/publicIPAddresses/', variables('pipPrimaryName'))]" - ], - "tags":{ - "displayName": "Load Balancer" - }, - "properties": { - "frontendIPConfigurations": [ - { - "name": "[variables('feIpConfigPrimaryName')]", - "properties": { - "publicIPAddress": { - "id": "[resourceId('Microsoft.Network/publicIPAddresses', variables('pipPrimaryName'))]" - } - } - }, - { - "name": "[variables('feIpConfigMemberName')]", - "properties": { - "publicIPAddress": { - "id": "[resourceId('Microsoft.Network/publicIPAddresses', variables('pipMemberName'))]" - } - } - } - ], - "backendAddressPools": [ - { - "name": "[variables('bepoolPrimaryName')]" - }, - { - "name": "[variables('bepoolMemberName')]" - } - ], - "inboundNatPools": [ - { - "name": "[variables('natPoolPrimaryName')]", - "properties": { - "frontendIPConfiguration": { - "id": "[variables('feIpConfigPrimaryId')]" - }, - "protocol": "tcp", - "frontendPortRangeStart": 10022, - "frontendPortRangeEnd": 11022, - "backendPort": 22 - } - }, - { - "name": "[variables('natPoolMemberName')]", - "properties": { - "frontendIPConfiguration": { - "id": "[variables('feIpConfigMemberId')]" - }, - "protocol": "tcp", - "frontendPortRangeStart": 20022, - "frontendPortRangeEnd": 21022, - "backendPort": 22 - } - } - ], - "loadBalancingRules": [ - { - "name": "HTTPRulePrimary", - "properties": { - "loadDistribution": "Default", - "frontendIPConfiguration": { - "id": "[variables('feIpConfigPrimaryId')]" - }, - "backendAddressPool": { - "id": "[variables('bepoolPrimaryID')]" - }, - "protocol": "Tcp", - "frontendPort": 80, - "backendPort": 80, - "enableFloatingIP": false, - "idleTimeoutInMinutes": 5, - "probe": { - "id": "[resourceId('Microsoft.Network/loadBalancers/probes', variables('lbName'), variables('httpProbePrimaryName'))]" - } - } - }, - { - "name": "HTTPSRulePrimary", - "properties": { - "loadDistribution": "Default", - "frontendIPConfiguration": { - "id": "[variables('feIpConfigPrimaryId')]" - }, - "backendAddressPool": { - "id": "[variables('bepoolPrimaryID')]" - }, - "protocol": "Tcp", - "frontendPort": 443, - "backendPort": 443, - "enableFloatingIP": false, - "idleTimeoutInMinutes": 5, - "probe": { - "id": "[resourceId('Microsoft.Network/loadBalancers/probes', variables('lbName'), variables('httpsProbePrimaryName'))]" - } - } - }, - { - "name": "HTTPRuleMember", - "properties": { - "loadDistribution": "Default", - "frontendIPConfiguration": { - "id": "[variables('feIpConfigMemberId')]" - }, - "backendAddressPool": { - "id": "[variables('bepoolMemberID')]" - }, - "protocol": "Tcp", - "frontendPort": 80, - "backendPort": 80, - "enableFloatingIP": false, - "idleTimeoutInMinutes": 5, - "probe": { - "id": "[resourceId('Microsoft.Network/loadBalancers/probes', variables('lbName'), variables('httpProbeMemberName'))]" - } - } - }, - { - "name": "HTTPSRuleMember", - "properties": { - "loadDistribution": "Default", - "frontendIPConfiguration": { - "id": "[variables('feIpConfigMemberId')]" - }, - "backendAddressPool": { - "id": "[variables('bepoolMemberID')]" - }, - "protocol": "Tcp", - "frontendPort": 443, - "backendPort": 443, - "enableFloatingIP": false, - "idleTimeoutInMinutes": 5, - "probe": { - "id": "[resourceId('Microsoft.Network/loadBalancers/probes', variables('lbName'), variables('httpsProbeMemberName'))]" - } - } - } - ], - "probes": [ - { - "name": "[variables('httpProbePrimaryName')]", - "properties": { - "protocol": "Http", - "requestPath": "/artifactory/api/system/ping", - "port": 80, - "intervalInSeconds": 60, - "numberOfProbes": 5 - } - }, - { - "name": "[variables('httpsProbePrimaryName')]", - "properties": { - "protocol": "Tcp", - "port": 443, - "intervalInSeconds": 60, - "numberOfProbes": 5 - } - }, - { - "name": "[variables('httpProbeMemberName')]", - "properties": { - "protocol": "Http", - "requestPath": "/artifactory/api/system/ping", - "port": 80, - "intervalInSeconds": 60, - "numberOfProbes": 5 - } - }, - { - "name": "[variables('httpsProbeMemberName')]", - "properties": { - "protocol": "Tcp", - "port": 443, - "intervalInSeconds": 60, - "numberOfProbes": 5 - } - } - ] - } - }, - { - "apiVersion": "2018-07-01", - "type": "Microsoft.Storage/storageAccounts", - "name": "[variables('storageAccountName')]", - "location": "[parameters('location')]", - "sku": { - "name": "[parameters('storageAccountType')]" - }, - "tags":{ - "displayName": "Artifactory Storage Account" - }, - "kind": "Storage", - "properties": {} - }, - { - "type": "Microsoft.Resources/deployments", - "name": "deploySQLDB", - "apiVersion": "2018-07-01", - "properties": { - "mode": "Incremental", - "templateLink": { - "uri": "[variables('dbTemplateLocation')]", - "contentVersion": "1.0.0.0" - }, - "parameters": { - "db_user": { - "value": "[parameters('DB_Admin_User')]" - }, - "db_password": { - "value": "[parameters('DB_Admin_Password')]" - }, - "db_server": { - "value": "[variables('azureSqlServerName')]" - }, - "db_name": { - "value": "[parameters('DB_Name')]" - }, - "db_edition": { - "value": "[variables('DB_Edition')]" - }, - "db_location": { - "value": "[variables('DB_Location')]" - } - } - } - }, - { - "type": "Microsoft.Compute/virtualMachineScaleSets", - "name": "[variables('scaleSetPrimaryName')]", - "location": "[parameters('location')]", - "apiVersion": "2018-10-01", - "dependsOn": [ - "[concat('Microsoft.Network/loadBalancers/', variables('lbName'))]", - "[concat('Microsoft.Network/virtualNetworks/', variables('virtualNetworkName'))]", - "[concat('Microsoft.Resources/deployments/', 'deploySQLDB')]", - "[concat('Microsoft.Storage/storageAccounts/', variables('storageAccountName'))]" - ], - "plan": { - "name": "artifactory-jcr", - "publisher": "jfrog", - "product": "jfrogcontainerregistry-vm" - }, - "sku": { - "name": "[parameters('vmSku')]", - "tier": "Standard", - "capacity": "1" - }, - "properties": { - "singlePlacementGroup": true, - "overprovision": "false", - "upgradePolicy": { - "mode": "Manual" - }, - "virtualMachineProfile": { - "storageProfile": { - "osDisk": { - "caching": "ReadWrite", - "diskSizeGB": "250", - "createOption": "FromImage" - }, - "imageReference": "[variables('imageReference')]" - }, - "osProfile": { - "computerNamePrefix": "[variables('namingInfix')]", - "adminUsername": "[parameters('adminUsername')]", - "adminPassword": "[parameters('adminPassword')]", - "customData": "[base64(concat('#INSTALL SCRIPT INPUTS\nCERTIFICATE_KEY=',variables('certificateKey'),'\nCERTIFICATE=', variables('certificate'),'\nCERTIFICATE_DOMAIN=',variables('certificateDomain'),'\nARTIFACTORY_SERVER_NAME=',variables('artifactoryServerName'),'\nEXTRA_JAVA_OPTS=',variables('extraJavaOptions'),'\nJDBC_STR=',reference('Microsoft.Resources/deployments/deploySQLDB').outputs.jdbcConnString.value,'\nDB_NAME=',variables('DB_Name'),'\nDB_ADMIN_USER=',variables('DB_Admin_User'),'\nDB_ADMIN_PASSWD=',variables('DB_Admin_Password'),'\nSTO_ACT_NAME=',variables('storageAccountName'),'\nSTO_ACT_ENDPOINT=',reference(resourceId('Microsoft.Storage/storageAccounts/', variables('storageAccountName'))).primaryEndpoints.blob,'\nSTO_CTR_NAME=',variables('vmStorageAccountContainerName'),'\nSTO_ACT_KEY=',listKeys(resourceId('Microsoft.Storage/storageAccounts', variables('storageAccountName')), '2018-07-01').keys[0].value,'\nMASTER_KEY=',variables('masterKey'),'\nIS_PRIMARY=','true','\n'))]" - }, - "networkProfile": { - "networkInterfaceConfigurations": [ - { - "name": "[variables('nicPrimaryName')]", - "properties": { - "primary": true, - "ipConfigurations": [ - { - "name": "[concat(variables('ipConfigName'),'1')]", - "properties": { - "subnet": { - "id": "[resourceId('Microsoft.Network/virtualNetworks/subnets', variables('virtualNetworkName'), variables('subnetPrimaryName'))]" - }, - "loadBalancerBackendAddressPools": [ - { - "id": "[resourceId('Microsoft.Network/loadBalancers/backendAddressPools', variables('lbName'), variables('bePoolPrimaryName'))]" - } - ], - "loadBalancerInboundNatPools": [ - { - "id": "[resourceId('Microsoft.Network/loadBalancers/inboundNatPools', variables('lbName'), variables('natPoolPrimaryName'))]" - } - ] - } - } - ] - } - } - ] - }, - "extensionProfile": { - "extensions": [ - { - "name": "extension1", - "properties": { - "publisher": "Microsoft.Azure.Extensions", - "type": "CustomScript", - "typeHandlerVersion": "2.0", - "autoUpgradeMinorVersion": false, - "settings": { - "fileUris": [ - "[uri(parameters('_artifactsLocation'), concat('scripts/install_artifactory.sh', parameters('_artifactsLocationSasToken')))]" - ] - }, - "protectedSettings": { - "commandToExecute": "sh install_artifactory.sh" - } - } - } - ] - } - } - } - } - ], - "outputs": { - "fqdn": { - "value": "[reference(resourceId('Microsoft.Network/publicIPAddresses',variables('pipPrimaryName')),'2018-07-01').dnsSettings.fqdn]", - "type": "string" - } - } -} \ No newline at end of file diff --git a/JFrogContainerRegistry/AzureResourceManager/MP_submission_6/nested/azureDBDeploy.json b/JFrogContainerRegistry/AzureResourceManager/MP_submission_6/nested/azureDBDeploy.json deleted file mode 100644 index 70c31a5..0000000 --- a/JFrogContainerRegistry/AzureResourceManager/MP_submission_6/nested/azureDBDeploy.json +++ /dev/null @@ -1,96 +0,0 @@ -{ - "$schema": "https://schema.management.azure.com/schemas/2015-01-01/deploymentTemplate.json#", - "contentVersion": "1.0.0.0", - "parameters": { - "db_user": { - "type": "string", - "defaultValue": "artifactory", - "minLength": 1 - }, - "db_password": { - "type": "securestring" - }, - "db_server": { - "type": "string", - "defaultValue": "artmssqlsrv", - "minLength": 1 - }, - "db_name": { - "type": "string", - "defaultValue": "artdb", - "minLength": 1 - }, - "db_location": { - "type": "string", - "defaultValue": "" - }, - "db_edition": { - "type": "string", - "allowedValues": [ - "Basic", - "Standard", - "Premium" - ] - } - }, - "variables": { - "rtdbCollation": "Latin1_General_100_CS_AS", - "db_location": "[parameters('db_location')]" - }, - "resources": [ - { - "name": "[parameters('db_server')]", - "type": "Microsoft.Sql/servers", - "kind": "v12.0", - "location": "[variables('db_location')]", - "apiVersion": "2019-06-01-preview", - "tags": { - "displayName": "artifactoryDB" - }, - "properties": { - "administratorLogin": "[parameters('db_user')]", - "administratorLoginPassword": "[parameters('db_password')]", - "version": "12.0" - }, - "resources": [ - { - "name": "[uniqueString(parameters('db_server'), 'AllowAllWindowsAzureIps' )]", - "type": "firewallrules", - "location": "[variables('db_location')]", - "apiVersion": "2019-06-01-preview", - "dependsOn": [ - "[concat('Microsoft.Sql/servers/', parameters('db_server'))]" - ], - "properties": { - "startIpAddress": "0.0.0.0", - "endIpAddress": "0.0.0.0" - } - }, - { - "name": "[parameters('db_name')]", - "type": "databases", - "kind": "v12.0,user", - "location": "[variables('db_location')]", - "apiVersion": "2019-06-01-preview", - "dependsOn": [ - "[parameters('db_server')]" - ], - "tags": { - "displayName": "artifactoryDB" - }, - "properties": { - "edition": "[parameters('db_edition')]", - "maxSizeBytes": "1073741824", - "collation": "[variables('rtdbCollation')]" - } - } - ] - } - ], - "outputs": { - "jdbcConnString": { - "type": "string", - "value": "[concat('jdbc:sqlserver://', reference(concat('Microsoft.Sql/servers/', parameters('db_server'))).fullyQualifiedDomainName, ':1433')]" - } - } -} diff --git a/JFrogContainerRegistry/AzureResourceManager/MP_submission_6/scripts/install_artifactory.sh b/JFrogContainerRegistry/AzureResourceManager/MP_submission_6/scripts/install_artifactory.sh deleted file mode 100644 index d033b1d..0000000 --- a/JFrogContainerRegistry/AzureResourceManager/MP_submission_6/scripts/install_artifactory.sh +++ /dev/null @@ -1,206 +0,0 @@ -#!/bin/bash -DB_URL=$(cat /var/lib/cloud/instance/user-data.txt | grep "^JDBC_STR" | sed "s/JDBC_STR=//") -DB_NAME=$(cat /var/lib/cloud/instance/user-data.txt | grep "^DB_NAME=" | sed "s/DB_NAME=//") -DB_USER=$(cat /var/lib/cloud/instance/user-data.txt | grep "^DB_ADMIN_USER=" | sed "s/DB_ADMIN_USER=//") -DB_PASSWORD=$(cat /var/lib/cloud/instance/user-data.txt | grep "^DB_ADMIN_PASSWD=" | sed "s/DB_ADMIN_PASSWD=//") -STORAGE_ACCT=$(cat /var/lib/cloud/instance/user-data.txt | grep "^STO_ACT_NAME=" | sed "s/STO_ACT_NAME=//") -STORAGE_ACT_ENDPOINT=$(cat /var/lib/cloud/instance/user-data.txt | grep "^STO_ACT_ENDPOINT=" | sed "s/STO_ACT_ENDPOINT=//") -STORAGE_CONTAINER=$(cat /var/lib/cloud/instance/user-data.txt | grep "^STO_CTR_NAME=" | sed "s/STO_CTR_NAME=//") -STORAGE_ACCT_KEY=$(cat /var/lib/cloud/instance/user-data.txt | grep "^STO_ACT_KEY=" | sed "s/STO_ACT_KEY=//") -MASTER_KEY=$(cat /var/lib/cloud/instance/user-data.txt | grep "^MASTER_KEY=" | sed "s/MASTER_KEY=//") -IS_PRIMARY=$(cat /var/lib/cloud/instance/user-data.txt | grep "^IS_PRIMARY=" | sed "s/IS_PRIMARY=//") - - -UBUNTU_CODENAME=$(cat /etc/lsb-release | grep "^DISTRIB_CODENAME=" | sed "s/DISTRIB_CODENAME=//") - -export DEBIAN_FRONTEND=noninteractive - -#Generate Self-Signed Cert -mkdir -p /etc/pki/tls/private/ /etc/pki/tls/certs/ -openssl req -nodes -x509 -newkey rsa:4096 -keyout /etc/pki/tls/private/example.key -out /etc/pki/tls/certs/example.pem -days 356 -subj "/C=US/ST=California/L=SantaClara/O=IT/CN=*.localhost" - -CERTIFICATE_DOMAIN=$(cat /var/lib/cloud/instance/user-data.txt | grep "^CERTIFICATE_DOMAIN=" | sed "s/CERTIFICATE_DOMAIN=//") -[ -z "$CERTIFICATE_DOMAIN" ] && CERTIFICATE_DOMAIN=artifactory - -ARTIFACTORY_SERVER_NAME=$(cat /var/lib/cloud/instance/user-data.txt | grep "^ARTIFACTORY_SERVER_NAME=" | sed "s/ARTIFACTORY_SERVER_NAME=//") -[ -z "$ARTIFACTORY_SERVER_NAME" ] && ARTIFACTORY_SERVER_NAME=artifactory - -#Configuring nginx -rm /etc/nginx/sites-enabled/default - -cat </etc/nginx/nginx.conf - #user nobody; - worker_processes 1; - error_log /var/log/nginx/error.log info; - #pid logs/nginx.pid; - events { - worker_connections 1024; - } - - http { - include mime.types; - variables_hash_max_size 1024; - variables_hash_bucket_size 64; - server_names_hash_max_size 4096; - server_names_hash_bucket_size 128; - types_hash_max_size 2048; - types_hash_bucket_size 64; - proxy_read_timeout 2400s; - client_header_timeout 2400s; - client_body_timeout 2400s; - proxy_connect_timeout 75s; - proxy_send_timeout 2400s; - proxy_buffer_size 32k; - proxy_buffers 40 32k; - proxy_busy_buffers_size 64k; - proxy_temp_file_write_size 250m; - proxy_http_version 1.1; - client_body_buffer_size 128k; - - include /etc/nginx/conf.d/*.conf; - default_type application/octet-stream; - log_format main '$remote_addr - $remote_user [$time_local] "$request" ' - '$status $body_bytes_sent "$http_referer" ' - '"$http_user_agent" "$http_x_forwarded_for"'; - access_log /var/log/nginx/access.log main; - sendfile on; - #tcp_nopush on; - #keepalive_timeout 0; - keepalive_timeout 65; - } -EOF - -cat </etc/nginx/conf.d/artifactory.conf -ssl_certificate /etc/pki/tls/certs/cert.pem; -ssl_certificate_key /etc/pki/tls/private/cert.key; -ssl_session_cache shared:SSL:1m; -ssl_prefer_server_ciphers on; -## server configuration -server { - listen 443 ssl; - listen 80 ; - server_name ~(?.+)\\.${CERTIFICATE_DOMAIN} artifactory ${ARTIFACTORY_SERVER_NAME}.${CERTIFICATE_DOMAIN}; - if (\$http_x_forwarded_proto = '') { - set \$http_x_forwarded_proto \$scheme; - } - ## Application specific logs - ## access_log /var/log/nginx/artifactory-access.log timing; - ## error_log /var/log/nginx/artifactory-error.log; - rewrite ^/$ /artifactory/webapp/ redirect; - rewrite ^/artifactory/?(/webapp)?$ /artifactory/webapp/ redirect; - rewrite ^/(v1|v2)/(.*) /artifactory/api/docker/\$repo/\$1/\$2; - chunked_transfer_encoding on; - client_max_body_size 0; - location /artifactory/ { - proxy_read_timeout 2400; - proxy_pass_header Server; - proxy_cookie_path ~*^/.* /; - proxy_pass http://127.0.0.1:8081/artifactory/; - proxy_set_header X-Artifactory-Override-Base-Url - \$http_x_forwarded_proto://\$host:\$server_port/artifactory; - proxy_set_header X-Forwarded-Port \$server_port; - proxy_set_header X-Forwarded-Proto \$http_x_forwarded_proto; - proxy_set_header Host \$http_host; - proxy_set_header X-Forwarded-For \$proxy_add_x_forwarded_for; - } -} -EOF - -HOSTNAME=$(ip route get 8.8.8.8 | awk '{print $NF; exit}') - -if [ "${IS_PRIMARY}" = "true" ]; then - NODE_NAME=art-primary -else - NODE_NAME=art-$(date +%s$RANDOM) -fi - -cat </var/opt/jfrog/artifactory/etc/ha-node.properties -node.id=${NODE_NAME} -artifactory.ha.data.dir=/var/opt/jfrog/artifactory/data -context.url=http://${HOSTNAME}:8081/artifactory -access.context.url=http://${HOSTNAME}:8081/access -membership.port=10001 -hazelcast.interface=${HOSTNAME} -primary=${IS_PRIMARY} -EOF - -cat </var/opt/jfrog/artifactory/etc/db.properties -type=mssql -driver=com.microsoft.sqlserver.jdbc.SQLServerDriver -url=${DB_URL};databaseName=${DB_NAME};sendStringParametersAsUnicode=false;applicationName=Artifactory Binary Repository -username=${DB_USER} -password=${DB_PASSWORD} -EOF - -mkdir -p /var/opt/jfrog/artifactory/etc/security - -cat </var/opt/jfrog/artifactory/etc/security/master.key -${MASTER_KEY} -EOF - -cat </var/opt/jfrog/artifactory/etc/binarystore.xml - - - - - - - - - - - - - - - - - crossNetworkStrategy - crossNetworkStrategy - 2 - 1 - - - - - remote - - - - local - - - - - ${STORAGE_ACCT} - ${STORAGE_ACCT_KEY} - ${STORAGE_ACT_ENDPOINT} - ${STORAGE_CONTAINER} - - -EOF - -HOSTNAME=$(hostname -i) -sed -i -e "s/art1/art-$(date +%s$RANDOM)/" /var/opt/jfrog/artifactory/etc/ha-node.properties -sed -i -e "s/127.0.0.1/$HOSTNAME/" /var/opt/jfrog/artifactory/etc/ha-node.properties -sed -i -e "s/172.25.0.3/$HOSTNAME/" /var/opt/jfrog/artifactory/etc/ha-node.properties - -cat /var/lib/cloud/instance/user-data.txt | grep "^CERTIFICATE=" | sed "s/CERTIFICATE=//" > /tmp/temp.pem -cat /tmp/temp.pem | sed 's/CERTIFICATE----- /&\n/g' | sed 's/ -----END/\n-----END/g' | awk '{if($0 ~ /----/) {print;} else { gsub(/ /,"\n");print;}}' > /etc/pki/tls/certs/cert.pem -rm /tmp/temp.pem - -cat /var/lib/cloud/instance/user-data.txt | grep "^CERTIFICATE_KEY=" | sed "s/CERTIFICATE_KEY=//" > /tmp/temp.key -cat /tmp/temp.key | sed 's/KEY----- /&\n/' | sed 's/ -----END/\n-----END/' | awk '{if($0 ~ /----/) {print;} else { gsub(/ /,"\n");print;}}' > /etc/pki/tls/private/cert.key -rm /tmp/temp.key - -EXTRA_JAVA_OPTS=$(cat /var/lib/cloud/instance/user-data.txt | grep "^EXTRA_JAVA_OPTS=" | sed "s/EXTRA_JAVA_OPTS=//") -[ -z "$EXTRA_JAVA_OPTS" ] && EXTRA_JAVA_OPTS='-server -Xms2g -Xmx6g -Xss256k -XX:+UseG1GC -XX:OnOutOfMemoryError="kill -9 %p"' -echo "export JAVA_OPTIONS=\"${EXTRA_JAVA_OPTS}\"" >> /var/opt/jfrog/artifactory/etc/default -chown artifactory:artifactory -R /var/opt/jfrog/artifactory/* && chown artifactory:artifactory -R /var/opt/jfrog/artifactory/etc/security && chown artifactory:artifactory -R /var/opt/jfrog/artifactory/etc/* - -# start Artifactory -sleep $((RANDOM % 240)) -service artifactory start -service nginx start -nginx -s reload -echo "INFO: Artifactory installation completed." > /tmp/artifactory-install.log diff --git a/JFrogContainerRegistry/AzureResourceManager/MP_submission_7/createUiDefinition.json b/JFrogContainerRegistry/AzureResourceManager/MP_submission_7/createUiDefinition.json deleted file mode 100644 index e61080f..0000000 --- a/JFrogContainerRegistry/AzureResourceManager/MP_submission_7/createUiDefinition.json +++ /dev/null @@ -1,340 +0,0 @@ -{ - "$schema": "https://schema.management.azure.com/schemas/0.1.2-preview/CreateUIDefinition.MultiVm.json#", - "handler": "Microsoft.Azure.CreateUIDef", - "version": "0.1.2-preview", - "parameters": { - "basics": [ - {} - ], - "steps": [ - { - "name": "vmCredentials", - "label": "VM Credential", - "bladeTitle": "VM Credential", - "subLabel": { - "preValidation": "Provide VM credentials", - "postValidation": "Great - let's move on!" - }, - "elements": [ - { - "name": "adminUsername", - "type": "Microsoft.Compute.UserNameTextBox", - "label": "Admin username", - "osPlatform": "Linux", - "constraints": { - "required": true, - "regex": "^[a-z0-9A-Z]{1,30}$", - "validationMessage": "Only alphanumeric characters are allowed, and the value must be 1-30 characters long." - }, - "toolTip": "Provide admin username for the virtual machine" - }, - { - "name": "adminPassword", - "type": "Microsoft.Compute.CredentialsCombo", - "label": { - "password": "Password", - "confirmPassword": "Confirm password" - }, - "osPlatform": "Linux", - "constraints": { - "required": true, - "customPasswordRegex": "^(?=.*[A-Za-z])(?=.*\\d)(?=.*[@$!%*#?&])[A-Za-z\\d@$!%*#?&]{12,}$", - "customValidationMessage": "The password must contain at least 12 characters, with at least 1 uppercase letter, 1 lowercase letter and 1 number." - }, - "options": { - "hideConfirmation": false - }, - "toolTip": { - "password": "Provide admin password for the virtual machine" - }, - "visible": true - } - ] - }, - { - "name": "clusterConfig", - "label": "JFrog Container Registry Cluster settings", - "subLabel": { - "preValidation": "Configure JFrog Container Registry Cluster settings", - "postValidation": "Done!" - }, - "bladeTitle": "JFrog Container Registry Cluster Settings", - "elements": [ - { - "name": "clusterName", - "type": "Microsoft.Common.TextBox", - "label": "Cluster name", - "toolTip": "Cluster name", - "defaultValue": "", - "constraints": { - "required": true, - "regex": "^[a-z0-9A-Z]{1,30}$", - "validationMessage": "Only alphanumeric characters are allowed, and the value must be 1-30 characters long." - } - }, - { - "name": "vmSku", - "type": "Microsoft.Compute.SizeSelector", - "label": "Virtual machine size", - "toolTip": "The size of the virtual machine for JFrog Container Registry", - "recommendedSizes": [ - "Standard_D2s_v3" - ], - "constraints": { - "allowedSizes": [ - "Standard_A4_v2", - "Standard_A4", - "Standard_D2s_v3", - "Standard_D4s_v3", - "Standard_DS2_v2", - "Standard_DS3_v2", - "Standard_D2_v2", - "Standard_D3_v2", - "Standard_DC2s", - "Standard_DC4s" - ] - }, - "osPlatform": "Linux", - "count": 1 - }, - { - "name": "artifactoryVersion", - "type": "Microsoft.Common.DropDown", - "label": "JFrog Container Registry-vm image version to deploy.", - "defaultValue": "7.4.3", - "toolTip": "Version of JFrog Container Registry to deploy", - "constraints": { - "allowedValues": [ - { - "label": "7.2.1", - "value": "7.2.1" - }, - { - "label": "7.3.2", - "value": "7.3.2" - }, - { - "label": "7.4.3", - "value": "7.4.3" - } - ], - "required": true - }, - "visible": true - }, - { - "name": "masterKey", - "type": "Microsoft.Common.PasswordBox", - "label": { - "password": "JFrog Container Registry master Key", - "confirmPassword": "Confirm master Key" - }, - "toolTip": "Master key for JFrog Container Registry cluster. Generate master.key using command '$openssl rand -hex 16'", - "constraints": { - "required": true, - "regex": "^[a-z0-9A-Z]{1,32}$", - "validationMessage": "Only alphanumeric characters are allowed, and the value must be 1-32 characters long." - }, - "options": { - "hideConfirmation": true - } - }, - { - "name": "certificate", - "type": "Microsoft.Common.PasswordBox", - "label": { - "password": "Provide your SSL Certificate.", - "confirmPassword": "Confirm SSL Certificate." - }, - "toolTip": "To use JFrog Container Registry as docker registry you need to provide wild card valid Certificate. Provide your SSL Certificate.", - "constraints": { - "required": true, - "regex": "^(-----BEGIN CERTIFICATE-----)(.+)(-----END CERTIFICATE-----)$", - "validationMessage": "Provide SSL Certificate." - }, - "options": { - "hideConfirmation": true - } - }, - { - "name": "certificateKey", - "type": "Microsoft.Common.PasswordBox", - "label": { - "password": "Provide your SSL Certificate key.", - "confirmPassword": "Confirm SSL Certificate key." - }, - "toolTip": "Provide your SSL Certificate key", - "constraints": { - "required": true, - "regex": "^(-----BEGIN)(.+)(PRIVATE KEY-----)(.+)(-----END)(.+)(PRIVATE KEY-----)$", - "validationMessage": "Provide SSL Certificate Key." - }, - "options": { - "hideConfirmation": true - } - }, - { - "name": "certificateDomain", - "type": "Microsoft.Common.TextBox", - "label": "Provide your Certificate Domain Name.", - "defaultValue": "artifactory", - "toolTip": "Provide your Certificate Domain Name. For e.g jfrog.team for certificate with *.jfrog.team", - "constraints": { - "required": true, - "regex": "^(\\*)*([\\w-\\.])+$", - "validationMessage": "Must be a valid fully-qualified domain name." - } - }, - { - "name": "artifactoryServerName", - "type": "Microsoft.Common.TextBox", - "label": "Provide JFrog Container Registry server name to be used in Nginx.", - "defaultValue": "artifactory", - "toolTip": "Provide JFrog Container Registry server name to be used in Nginx. e.g artifactory for artifactory.jfrog.team", - "constraints": { - "required": true, - "regex": "^[a-z0-9A-Z]{1,20}$", - "validationMessage": "Only letters and numbers are allowed, and the value must be 1-20 characters long." - } - }, - { - "name": "extraJavaOptions", - "type": "Microsoft.Common.TextBox", - "label": "Setting Java Memory Parameters for JFrog Container Registry", - "defaultValue": "-server -Xms512m -Xmx2g -Xss256k -XX:+UseG1GC -XX:OnOutOfMemoryError=\\\"kill -9 %p\\\"", - "toolTip": "Setting Java Memory Parameters for JFrog Container Registry. Learn about system requirements for JFrog Container Registry https://www.jfrog.com/confluence/display/RTF/System+Requirements#SystemRequirements-RecommendedHardware", - "constraints": { - "required": false, - "regex": "[^a-zA-Z0-9]+\\S+\\D", - "validationMessage": "Example: -server -Xms512m -Xmx2g -Xss256k -XX:+UseG1GC -XX:OnOutOfMemoryError=\\\"kill -9 %p\\\"" - } - } - ] - }, - { - "name": "databaseConfig", - "label": "Database Configuration", - "subLabel": { - "preValidation": "Configure the Database", - "postValidation": "Done" - }, - "bladeTitle": "Database Credential", - "elements": [ - { - "name": "dbAdminUsername", - "type": "Microsoft.Compute.UserNameTextBox", - "label": "User name", - "toolTip": "Admin username for the database", - "osPlatform": "Linux", - "constraints": { - "required": true, - "regex": "^[a-z0-9A-Z]{1,30}$", - "validationMessage": "Only alphanumeric characters are allowed, and the value must be 1-30 characters long." - } - }, - { - "name": "dbAdminPassword", - "type": "Microsoft.Common.PasswordBox", - "label": { - "password": "Password", - "confirmPassword": "Confirm password" - }, - "toolTip": "Admin password for the database", - "constraints": { - "required": true, - "regex": "^(?=.*[A-Za-z])(?=.*\\d)(?=.*[@$!%*#?&])[A-Za-z\\d@$!%*#?&]{12,}$", - "validationMessage": "The password must contain at least 12 characters, with at least 1 uppercase letter, 1 lowercase letter and 1 number." - }, - "options": { - "hideConfirmation": false - }, - "visible": true - }, - { - "name": "dbName", - "type": "Microsoft.Common.TextBox", - "label": "Database name", - "toolTip": "Database name", - "constraints": { - "required": true, - "regex": "^[a-z0-9A-Z]{1,15}$", - "validationMessage": "Only alphanumeric characters are allowed, and the value must be 1-15 characters long." - } - }, - { - "name": "dbEdition", - "type": "Microsoft.Common.DropDown", - "label": "Database Edition", - "defaultValue": "Basic", - "toolTip": "Edition of Database to use", - "constraints": { - "allowedValues": [ - { - "label": "Basic", - "value": "Basic" - }, - { - "label": "Standard", - "value": "Standard" - }, - { - "label": "Premium", - "value": "Premium" - } - ], - "required": true - }, - "visible": true - } - ] - }, - { - "name": "storageConfig", - "label": "Storage settings", - "subLabel": { - "preValidation": "Configure the infrastructure settings", - "postValidation": "Done" - }, - "bladeTitle": "Storage settings", - "elements": [ - { - "name": "storageAccountsType", - "type": "Microsoft.Common.DropDown", - "label": "Storage account type", - "defaultValue": "Standard_LRS", - "toolTip": "Storage account type", - "constraints": { - "allowedValues": [ - { - "label": "Standard_LRS", - "value": "Standard_LRS" - } - ], - "required": true - }, - "visible": true - } - ] - } - ], - "outputs": { - "clusterName": "[steps('clusterConfig').clusterName]", - "vmSku": "[steps('clusterConfig').vmSku]", - "location": "[location()]", - "artifactoryVersion": "[steps('clusterConfig').artifactoryVersion]", - "masterKey": "[steps('clusterConfig').masterKey]", - "certificate": "[steps('clusterConfig').certificate]", - "certificateKey": "[steps('clusterConfig').certificateKey]", - "certificateDomain": "[steps('clusterConfig').certificateDomain]", - "artifactoryServerName": "[steps('clusterConfig').artifactoryServerName]", - "extraJavaOptions": "[steps('clusterConfig').extraJavaOptions]", - "adminUsername": "[steps('vmCredentials').adminUsername]", - "adminPassword": "[steps('vmCredentials').adminPassword.password]", - "DB_Admin_User": "[steps('databaseConfig').dbAdminUsername]", - "DB_Admin_Password": "[steps('databaseConfig').dbAdminPassword]", - "DB_Name": "[steps('databaseConfig').dbName]", - "DB_Edition": "[steps('databaseConfig').dbEdition]", - "storageAccountType": "[steps('storageConfig').storageAccountsType]" - } - } -} \ No newline at end of file diff --git a/JFrogContainerRegistry/AzureResourceManager/MP_submission_7/mainTemplate.json b/JFrogContainerRegistry/AzureResourceManager/MP_submission_7/mainTemplate.json deleted file mode 100644 index bd39da3..0000000 --- a/JFrogContainerRegistry/AzureResourceManager/MP_submission_7/mainTemplate.json +++ /dev/null @@ -1,619 +0,0 @@ -{ - "$schema": "https://schema.management.azure.com/schemas/2015-01-01/deploymentTemplate.json#", - "contentVersion": "1.0.0.0", - "parameters": { - "vmSku": { - "type": "string", - "defaultValue": "Standard_D2s_v3", - "metadata": { - "description": "Size of VMs in the VM Scale Set." - } - }, - "clusterName": { - "type": "string", - "maxLength": 61, - "metadata": { - "description": "String used as a base for naming resources. Must be 3-61 characters in length and globally unique across Azure. A hash is prepended to this string for some resources, and resource-specific information is appended." - } - }, - "location": { - "type": "string", - "defaultValue": "[resourceGroup().location]", - "metadata": { - "description": "Location for the resources." - } - }, - "artifactoryVersion": { - "type": "string", - "defaultValue": "7.4.3", - "allowedValues": [ - "7.2.1", - "7.3.2", - "7.4.3" - ], - "metadata": { - "description": "JFrog Container Registry-vm image version to deploy." - } - }, - "masterKey": { - "type": "securestring", - "maxLength": 64, - "metadata": { - "description": "Master key for JFrog Container Registry cluster. Generate master.key using command '$openssl rand -hex 16'" - } - }, - "adminUsername": { - "type": "string", - "metadata": { - "description": "Admin username on all VMs. Follow conventions for azure VM admin user name." - } - }, - "adminPassword": { - "type": "securestring", - "metadata": { - "description": "Admin password on all VMs. Follow conventions for azure VM admin password rules." - } - }, - "certificate": { - "type": "securestring", - "metadata": { - "description": "To use Artifactory as docker registry you need to provide wild card valid Certificate. Provide your SSL Certificate." - } - }, - "certificateKey": { - "type": "securestring", - "metadata": { - "description": "Provide your SSL Certificate key" - } - }, - "certificateDomain": { - "type": "string", - "minLength": 1, - "defaultValue": "artifactory", - "metadata": { - "description": "Provide your Certificate Domain Name. For e.g jfrog.team for certificate with *.jfrog.team" - } - }, - "artifactoryServerName": { - "type": "string", - "minLength": 1, - "defaultValue": "artifactory", - "metadata": { - "description": "Provide artifactory server name to be used in Nginx. e.g artifactory for artifactory.jfrog.team" - } - }, - "extraJavaOptions": { - "type": "string", - "minLength": 1, - "defaultValue": "-server -Xms2g -Xmx12g -Xss256k -XX:+UseG1GC -XX:OnOutOfMemoryError=\\\"kill -9 %p\\\"", - "metadata": { - "description": "Setting Java Memory Parameters for Artifactory. Learn about system requirements for Artifactory https://www.jfrog.com/confluence/display/RTF/System+Requirements#SystemRequirements-RecommendedHardware." - } - }, - "DB_Admin_User": { - "type": "string", - "minLength": 1, - "metadata": { - "description": "Database Admin user name" - } - }, - "DB_Admin_Password": { - "type": "securestring", - "minLength": 1, - "metadata": { - "description": "Database Admin password" - } - }, - "DB_Name": { - "type": "string", - "minLength": 1, - "metadata": { - "description": "Database name" - } - }, - "DB_Edition": { - "type": "string", - "minLength": 1, - "defaultValue": "Basic", - "allowedValues": [ - "Basic", - "Standard", - "Premium" - ], - "metadata": { - "description": "Database Edition" - } - }, - "storageAccountType": { - "type": "string", - "defaultValue": "Standard_LRS", - "allowedValues": [ - "Standard_LRS", - "Standard_GRS", - "Standard_ZRS" - ], - "metadata": { - "description": "Storage Account type" - } - }, - "_artifactsLocation": { - "type": "string", - "metadata": { - "description": "The base URI where artifacts required by this template are located. When the template is deployed using the accompanying scripts, a private location in the subscription will be used and this value will be automatically generated." - }, - "defaultValue": "[deployment().properties.templateLink.uri]" - }, - "_artifactsLocationSasToken": { - "type": "securestring", - "metadata": { - "description": "The sasToken required to access _artifactsLocation. When the template is deployed using the accompanying scripts, a sasToken will be automatically generated." - }, - "defaultValue": "" - } - }, - "variables": { - "namingInfix": "[toLower(substring(concat(parameters('clusterName'), uniqueString(resourceGroup().id)), 0, 9))]", - "addressPrefix": "10.0.0.0/16", - "subnetPrimaryPrefix": "10.0.1.0/24", - "virtualNetworkName": "[concat(variables('namingInfix'), 'vnet')]", - "subnetPrimaryName": "[concat(variables('namingInfix'), 'primarySubnet')]", - "scaleSetPrimaryName": "[concat(variables('namingInfix'), 'primaryScaleset')]", - "lbName": "[concat(variables('namingInfix'), 'lb')]", - "bepoolPrimaryName": "[concat(variables('lbName'), 'primaryBepool')]", - "fepoolPrimaryName": "[concat(variables('lbName'), 'primaryFepool')]", - "bepoolPrimaryID": "[resourceId('Microsoft.Network/loadBalancers/backendAddressPools', variables('lbName'), variables('bepoolPrimaryName'))]", - "feIpConfigPrimaryName": "[concat(variables('fepoolPrimaryName'), 'primaryIpConfig')]", - "feIpConfigPrimaryId": "[resourceId('Microsoft.Network/loadBalancers/frontendIpConfigurations', variables('lbName'), variables('feIpConfigPrimaryName'))]", - "pipPrimaryName": "[concat(variables('namingInfix'), 'primaryPip')]", - "nicPrimaryName": "[concat(variables('namingInfix'), 'primaryNic')]", - "natPoolPrimaryName": "[concat(variables('lbName'), 'primaryNatpool')]", - "ipConfigName": "[concat(variables('namingInfix'), 'ipconfig')]", - "httpProbePrimaryName": "primaryHttpProbe", - "httpsProbePrimaryName": "primaryHttpsProbe", - "storageAccountName": "[concat(variables('namingInfix'), 'storage')]", - "vmStorageAccountContainerName": "filestore", - "azureSqlServerName": "[concat(variables('namingInfix'), 'sqlsrv')]", - "DB_Name": "[parameters('DB_Name')]", - "DB_Admin_User": "[parameters('DB_Admin_User')]", - "DB_Admin_Password": "[parameters('DB_Admin_Password')]", - "DB_Edition": "[parameters('DB_Edition')]", - "DB_Location": "[parameters('location')]", - "masterKey": "[parameters('masterKey')]", - "certificate": "[parameters('certificate')]", - "certificateKey": "[parameters('certificateKey')]", - "certificateDomain": "[parameters('certificateDomain')]", - "artifactoryServerName": "[parameters('artifactoryServerName')]", - "extraJavaOptions": "[parameters('extraJavaOptions')]", - "osType": { - "publisher": "jfrog", - "offer": "jfrogcontainerregistry-vm", - "sku": "artifactory-jcr", - "version": "[parameters('artifactoryVersion')]" - }, - "imageReference": "[variables('osType')]", - "dbTemplate": "azureDBDeploy.json", - "dbTemplateLocation": "[uri(parameters('_artifactsLocation'), concat('nested/', variables('dbTemplate'), parameters('_artifactsLocationSasToken')))]", - "nsgName": "[concat(variables('namingInfix'), 'nsg')]" - }, - "resources": [ - { - "apiVersion": "2019-05-01", - "name": "pid-04c1c376-5d4b-4771-9a7f-054f5910dcef", - "type": "Microsoft.Resources/deployments", - "properties": { - "mode": "Incremental", - "template": { - "$schema": "https://schema.management.azure.com/schemas/2015-01-01/deploymentTemplate.json#", - "contentVersion": "1.0.0.0", - "resources": [] - } - } - }, - { - "type": "Microsoft.Network/networkSecurityGroups", - "location": "[parameters('location')]", - "name": "[variables('nsgName')]", - "apiVersion": "2018-07-01", - "properties": { - "securityRules": [ - { - "name": "ssh-rule", - "properties": { - "description": "Allow SSH", - "protocol": "Tcp", - "sourcePortRange": "*", - "destinationPortRange": "22", - "sourceAddressPrefix": "Internet", - "destinationAddressPrefix": "*", - "access": "Allow", - "priority": 100, - "direction": "Inbound" - } - }, - { - "name": "http-artifactory-rule", - "properties": { - "description": "Allow HTTP", - "protocol": "Tcp", - "sourcePortRange": "*", - "destinationPortRange": "8081", - "sourceAddressPrefix": "Internet", - "destinationAddressPrefix": "*", - "access": "Allow", - "priority": 101, - "direction": "Inbound" - } - }, - { - "name": "http-nginx-rule", - "properties": { - "description": "Allow HTTP", - "protocol": "Tcp", - "sourcePortRange": "*", - "destinationPortRange": "80", - "sourceAddressPrefix": "Internet", - "destinationAddressPrefix": "*", - "access": "Allow", - "priority": 102, - "direction": "Inbound" - } - }, - { - "name": "https-nginx-rule", - "properties": { - "description": "Allow HTTP", - "protocol": "Tcp", - "sourcePortRange": "*", - "destinationPortRange": "443", - "sourceAddressPrefix": "Internet", - "destinationAddressPrefix": "*", - "access": "Allow", - "priority": 103, - "direction": "Inbound" - } - }, - { - "name": "membership-rule", - "properties": { - "description": "Allow HTTP", - "protocol": "Tcp", - "sourcePortRange": "*", - "destinationPortRange": "10001", - "sourceAddressPrefix": "Internet", - "destinationAddressPrefix": "*", - "access": "Allow", - "priority": 105, - "direction": "Inbound" - } - } - ] - } - }, - { - "type": "Microsoft.Network/virtualNetworks", - "name": "[variables('virtualNetworkName')]", - "location": "[parameters('location')]", - "apiVersion": "2018-07-01", - "dependsOn": [ - "[concat('Microsoft.Network/networkSecurityGroups/', variables('nsgName'))]" - ], - "properties": { - "addressSpace": { - "addressPrefixes": [ - "[variables('addressPrefix')]" - ] - }, - "subnets": [ - { - "name": "[variables('subnetPrimaryName')]", - "properties": { - "addressPrefix": "[variables('subnetPrimaryPrefix')]", - "networkSecurityGroup": { - "id": "[resourceId('Microsoft.Network/networkSecurityGroups', variables('nsgName'))]" - } - } - } - ] - } - }, - { - "apiVersion": "2018-07-01", - "type": "Microsoft.Network/networkInterfaces", - "name": "[variables('nicPrimaryName')]", - "location": "[parameters('location')]", - "dependsOn": [ - "[concat('Microsoft.Network/publicIPAddresses/', variables('pipPrimaryName'))]", - "[concat('Microsoft.Network/virtualNetworks/', variables('virtualNetworkName'))]", - "[resourceId('Microsoft.Network/networkSecurityGroups', variables('nsgName'))]" - ], - "properties": { - "ipConfigurations": [ - { - "name": "ipconfig1", - "properties": { - "privateIPAllocationMethod": "Dynamic", - "subnet": { - "id": "[resourceId('Microsoft.Network/virtualNetworks/subnets', variables('virtualNetworkName'), variables('subnetPrimaryName'))]" - } - } - } - ], - "networkSecurityGroup": { - "id": "[resourceId('Microsoft.Network/networkSecurityGroups', variables('nsgName'))]" - } - } - }, - { - "type": "Microsoft.Network/publicIPAddresses", - "name": "[variables('pipPrimaryName')]", - "location": "[parameters('location')]", - "sku": { - "name": "Standard" - }, - "apiVersion": "2018-07-01", - "properties": { - "publicIPAllocationMethod": "Static", - "dnsSettings": { - "domainNameLabel": "[variables('namingInfix')]" - } - } - }, - { - "type": "Microsoft.Network/loadBalancers", - "name": "[variables('lbName')]", - "location": "[parameters('location')]", - "apiVersion": "2018-07-01", - "sku": { - "name": "Standard" - }, - "dependsOn": [ - "[concat('Microsoft.Network/publicIPAddresses/', variables('pipPrimaryName'))]" - ], - "tags":{ - "displayName": "Load Balancer" - }, - "properties": { - "frontendIPConfigurations": [ - { - "name": "[variables('feIpConfigPrimaryName')]", - "properties": { - "publicIPAddress": { - "id": "[resourceId('Microsoft.Network/publicIPAddresses', variables('pipPrimaryName'))]" - } - } - } - ], - "backendAddressPools": [ - { - "name": "[variables('bepoolPrimaryName')]" - } - ], - "inboundNatPools": [ - { - "name": "[variables('natPoolPrimaryName')]", - "properties": { - "frontendIPConfiguration": { - "id": "[variables('feIpConfigPrimaryId')]" - }, - "protocol": "tcp", - "frontendPortRangeStart": 10022, - "frontendPortRangeEnd": 11022, - "backendPort": 22 - } - } - ], - "loadBalancingRules": [ - { - "name": "HTTPRulePrimary", - "properties": { - "loadDistribution": "Default", - "frontendIPConfiguration": { - "id": "[variables('feIpConfigPrimaryId')]" - }, - "backendAddressPool": { - "id": "[variables('bepoolPrimaryID')]" - }, - "protocol": "Tcp", - "frontendPort": 80, - "backendPort": 80, - "enableFloatingIP": false, - "idleTimeoutInMinutes": 5, - "probe": { - "id": "[resourceId('Microsoft.Network/loadBalancers/probes', variables('lbName'), variables('httpProbePrimaryName'))]" - } - } - }, - { - "name": "HTTPSRulePrimary", - "properties": { - "loadDistribution": "Default", - "frontendIPConfiguration": { - "id": "[variables('feIpConfigPrimaryId')]" - }, - "backendAddressPool": { - "id": "[variables('bepoolPrimaryID')]" - }, - "protocol": "Tcp", - "frontendPort": 443, - "backendPort": 443, - "enableFloatingIP": false, - "idleTimeoutInMinutes": 5, - "probe": { - "id": "[resourceId('Microsoft.Network/loadBalancers/probes', variables('lbName'), variables('httpsProbePrimaryName'))]" - } - } - } - ], - "probes": [ - { - "name": "[variables('httpProbePrimaryName')]", - "properties": { - "protocol": "Http", - "requestPath": "/artifactory/api/system/ping", - "port": 80, - "intervalInSeconds": 60, - "numberOfProbes": 5 - } - }, - { - "name": "[variables('httpsProbePrimaryName')]", - "properties": { - "protocol": "Tcp", - "port": 443, - "intervalInSeconds": 60, - "numberOfProbes": 5 - } - } - ] - } - }, - { - "apiVersion": "2018-07-01", - "type": "Microsoft.Storage/storageAccounts", - "name": "[variables('storageAccountName')]", - "location": "[parameters('location')]", - "sku": { - "name": "[parameters('storageAccountType')]" - }, - "tags":{ - "displayName": "Artifactory Storage Account" - }, - "kind": "Storage", - "properties": {} - }, - { - "type": "Microsoft.Resources/deployments", - "name": "deploySQLDB", - "apiVersion": "2018-07-01", - "properties": { - "mode": "Incremental", - "templateLink": { - "uri": "[variables('dbTemplateLocation')]", - "contentVersion": "1.0.0.0" - }, - "parameters": { - "db_user": { - "value": "[parameters('DB_Admin_User')]" - }, - "db_password": { - "value": "[parameters('DB_Admin_Password')]" - }, - "db_server": { - "value": "[variables('azureSqlServerName')]" - }, - "db_name": { - "value": "[parameters('DB_Name')]" - }, - "db_edition": { - "value": "[variables('DB_Edition')]" - }, - "db_location": { - "value": "[variables('DB_Location')]" - } - } - } - }, - { - "type": "Microsoft.Compute/virtualMachineScaleSets", - "name": "[variables('scaleSetPrimaryName')]", - "location": "[parameters('location')]", - "apiVersion": "2018-10-01", - "dependsOn": [ - "[concat('Microsoft.Network/loadBalancers/', variables('lbName'))]", - "[concat('Microsoft.Network/virtualNetworks/', variables('virtualNetworkName'))]", - "[concat('Microsoft.Resources/deployments/', 'deploySQLDB')]", - "[concat('Microsoft.Storage/storageAccounts/', variables('storageAccountName'))]" - ], - "plan": { - "name": "artifactory-jcr", - "publisher": "jfrog", - "product": "jfrogcontainerregistry-vm" - }, - "sku": { - "name": "[parameters('vmSku')]", - "tier": "Standard", - "capacity": "1" - }, - "properties": { - "singlePlacementGroup": true, - "overprovision": "false", - "upgradePolicy": { - "mode": "Manual" - }, - "virtualMachineProfile": { - "storageProfile": { - "osDisk": { - "caching": "ReadWrite", - "diskSizeGB": "250", - "createOption": "FromImage" - }, - "imageReference": "[variables('imageReference')]" - }, - "osProfile": { - "computerNamePrefix": "[variables('namingInfix')]", - "adminUsername": "[parameters('adminUsername')]", - "adminPassword": "[parameters('adminPassword')]", - "customData": "[base64(concat('#INSTALL SCRIPT INPUTS\nCERTIFICATE_KEY=',variables('certificateKey'),'\nCERTIFICATE=', variables('certificate'),'\nCERTIFICATE_DOMAIN=',variables('certificateDomain'),'\nARTIFACTORY_SERVER_NAME=',variables('artifactoryServerName'),'\nEXTRA_JAVA_OPTS=',variables('extraJavaOptions'),'\nJDBC_STR=',reference('Microsoft.Resources/deployments/deploySQLDB').outputs.jdbcConnString.value,'\nDB_NAME=',variables('DB_Name'),'\nDB_ADMIN_USER=',variables('DB_Admin_User'),'\nDB_ADMIN_PASSWD=',variables('DB_Admin_Password'),'\nSTO_ACT_NAME=',variables('storageAccountName'),'\nSTO_ACT_ENDPOINT=',reference(resourceId('Microsoft.Storage/storageAccounts/', variables('storageAccountName'))).primaryEndpoints.blob,'\nSTO_CTR_NAME=',variables('vmStorageAccountContainerName'),'\nSTO_ACT_KEY=',listKeys(resourceId('Microsoft.Storage/storageAccounts', variables('storageAccountName')), '2018-07-01').keys[0].value,'\nMASTER_KEY=',variables('masterKey'),'\nIS_PRIMARY=','true','\n'))]" - }, - "networkProfile": { - "networkInterfaceConfigurations": [ - { - "name": "[variables('nicPrimaryName')]", - "properties": { - "primary": true, - "ipConfigurations": [ - { - "name": "[concat(variables('ipConfigName'),'1')]", - "properties": { - "subnet": { - "id": "[resourceId('Microsoft.Network/virtualNetworks/subnets', variables('virtualNetworkName'), variables('subnetPrimaryName'))]" - }, - "loadBalancerBackendAddressPools": [ - { - "id": "[resourceId('Microsoft.Network/loadBalancers/backendAddressPools', variables('lbName'), variables('bePoolPrimaryName'))]" - } - ], - "loadBalancerInboundNatPools": [ - { - "id": "[resourceId('Microsoft.Network/loadBalancers/inboundNatPools', variables('lbName'), variables('natPoolPrimaryName'))]" - } - ] - } - } - ] - } - } - ] - }, - "extensionProfile": { - "extensions": [ - { - "name": "extension1", - "properties": { - "publisher": "Microsoft.Azure.Extensions", - "type": "CustomScript", - "typeHandlerVersion": "2.0", - "autoUpgradeMinorVersion": false, - "settings": { - "fileUris": [ - "[uri(parameters('_artifactsLocation'), concat('scripts/install_artifactory7.sh', parameters('_artifactsLocationSasToken')))]" - ] - }, - "protectedSettings": { - "commandToExecute": "sh install_artifactory7.sh" - } - } - } - ] - } - } - } - } - ], - "outputs": { - "fqdn": { - "value": "[reference(resourceId('Microsoft.Network/publicIPAddresses',variables('pipPrimaryName')),'2018-07-01').dnsSettings.fqdn]", - "type": "string" - } - } -} \ No newline at end of file diff --git a/JFrogContainerRegistry/AzureResourceManager/MP_submission_7/nested/azureDBDeploy.json b/JFrogContainerRegistry/AzureResourceManager/MP_submission_7/nested/azureDBDeploy.json deleted file mode 100644 index 70c31a5..0000000 --- a/JFrogContainerRegistry/AzureResourceManager/MP_submission_7/nested/azureDBDeploy.json +++ /dev/null @@ -1,96 +0,0 @@ -{ - "$schema": "https://schema.management.azure.com/schemas/2015-01-01/deploymentTemplate.json#", - "contentVersion": "1.0.0.0", - "parameters": { - "db_user": { - "type": "string", - "defaultValue": "artifactory", - "minLength": 1 - }, - "db_password": { - "type": "securestring" - }, - "db_server": { - "type": "string", - "defaultValue": "artmssqlsrv", - "minLength": 1 - }, - "db_name": { - "type": "string", - "defaultValue": "artdb", - "minLength": 1 - }, - "db_location": { - "type": "string", - "defaultValue": "" - }, - "db_edition": { - "type": "string", - "allowedValues": [ - "Basic", - "Standard", - "Premium" - ] - } - }, - "variables": { - "rtdbCollation": "Latin1_General_100_CS_AS", - "db_location": "[parameters('db_location')]" - }, - "resources": [ - { - "name": "[parameters('db_server')]", - "type": "Microsoft.Sql/servers", - "kind": "v12.0", - "location": "[variables('db_location')]", - "apiVersion": "2019-06-01-preview", - "tags": { - "displayName": "artifactoryDB" - }, - "properties": { - "administratorLogin": "[parameters('db_user')]", - "administratorLoginPassword": "[parameters('db_password')]", - "version": "12.0" - }, - "resources": [ - { - "name": "[uniqueString(parameters('db_server'), 'AllowAllWindowsAzureIps' )]", - "type": "firewallrules", - "location": "[variables('db_location')]", - "apiVersion": "2019-06-01-preview", - "dependsOn": [ - "[concat('Microsoft.Sql/servers/', parameters('db_server'))]" - ], - "properties": { - "startIpAddress": "0.0.0.0", - "endIpAddress": "0.0.0.0" - } - }, - { - "name": "[parameters('db_name')]", - "type": "databases", - "kind": "v12.0,user", - "location": "[variables('db_location')]", - "apiVersion": "2019-06-01-preview", - "dependsOn": [ - "[parameters('db_server')]" - ], - "tags": { - "displayName": "artifactoryDB" - }, - "properties": { - "edition": "[parameters('db_edition')]", - "maxSizeBytes": "1073741824", - "collation": "[variables('rtdbCollation')]" - } - } - ] - } - ], - "outputs": { - "jdbcConnString": { - "type": "string", - "value": "[concat('jdbc:sqlserver://', reference(concat('Microsoft.Sql/servers/', parameters('db_server'))).fullyQualifiedDomainName, ':1433')]" - } - } -} diff --git a/JFrogContainerRegistry/AzureResourceManager/MP_submission_7/scripts/install_artifactory7.sh b/JFrogContainerRegistry/AzureResourceManager/MP_submission_7/scripts/install_artifactory7.sh deleted file mode 100644 index 77a62b7..0000000 --- a/JFrogContainerRegistry/AzureResourceManager/MP_submission_7/scripts/install_artifactory7.sh +++ /dev/null @@ -1,178 +0,0 @@ -#!/bin/bash -DB_URL=$(cat /var/lib/cloud/instance/user-data.txt | grep "^JDBC_STR" | sed "s/JDBC_STR=//") -DB_NAME=$(cat /var/lib/cloud/instance/user-data.txt | grep "^DB_NAME=" | sed "s/DB_NAME=//") -DB_USER=$(cat /var/lib/cloud/instance/user-data.txt | grep "^DB_ADMIN_USER=" | sed "s/DB_ADMIN_USER=//") -DB_PASSWORD=$(cat /var/lib/cloud/instance/user-data.txt | grep "^DB_ADMIN_PASSWD=" | sed "s/DB_ADMIN_PASSWD=//") -STORAGE_ACCT=$(cat /var/lib/cloud/instance/user-data.txt | grep "^STO_ACT_NAME=" | sed "s/STO_ACT_NAME=//") -STORAGE_ACT_ENDPOINT=$(cat /var/lib/cloud/instance/user-data.txt | grep "^STO_ACT_ENDPOINT=" | sed "s/STO_ACT_ENDPOINT=//") -STORAGE_CONTAINER=$(cat /var/lib/cloud/instance/user-data.txt | grep "^STO_CTR_NAME=" | sed "s/STO_CTR_NAME=//") -STORAGE_ACCT_KEY=$(cat /var/lib/cloud/instance/user-data.txt | grep "^STO_ACT_KEY=" | sed "s/STO_ACT_KEY=//") -MASTER_KEY=$(cat /var/lib/cloud/instance/user-data.txt | grep "^MASTER_KEY=" | sed "s/MASTER_KEY=//") -IS_PRIMARY=$(cat /var/lib/cloud/instance/user-data.txt | grep "^IS_PRIMARY=" | sed "s/IS_PRIMARY=//") - - -export DEBIAN_FRONTEND=noninteractive - -#Generate Self-Signed Cert -mkdir -p /etc/pki/tls/private/ /etc/pki/tls/certs/ -openssl req -nodes -x509 -newkey rsa:4096 -keyout /etc/pki/tls/private/example.key -out /etc/pki/tls/certs/example.pem -days 356 -subj "/C=US/ST=California/L=SantaClara/O=IT/CN=*.localhost" - -CERTIFICATE_DOMAIN=$(cat /var/lib/cloud/instance/user-data.txt | grep "^CERTIFICATE_DOMAIN=" | sed "s/CERTIFICATE_DOMAIN=//") -[ -z "$CERTIFICATE_DOMAIN" ] && CERTIFICATE_DOMAIN=artifactory - -ARTIFACTORY_SERVER_NAME=$(cat /var/lib/cloud/instance/user-data.txt | grep "^ARTIFACTORY_SERVER_NAME=" | sed "s/ARTIFACTORY_SERVER_NAME=//") -[ -z "$ARTIFACTORY_SERVER_NAME" ] && ARTIFACTORY_SERVER_NAME=artifactory - -#Configuring nginx -rm /etc/nginx/sites-enabled/default - -cat </etc/nginx/nginx.conf - #user nobody; - worker_processes 1; - error_log /var/log/nginx/error.log info; - #pid logs/nginx.pid; - events { - worker_connections 1024; - } - - http { - include mime.types; - variables_hash_max_size 1024; - variables_hash_bucket_size 64; - server_names_hash_max_size 4096; - server_names_hash_bucket_size 128; - types_hash_max_size 2048; - types_hash_bucket_size 64; - proxy_read_timeout 2400s; - client_header_timeout 2400s; - client_body_timeout 2400s; - proxy_connect_timeout 75s; - proxy_send_timeout 2400s; - proxy_buffer_size 32k; - proxy_buffers 40 32k; - proxy_busy_buffers_size 64k; - proxy_temp_file_write_size 250m; - proxy_http_version 1.1; - client_body_buffer_size 128k; - - include /etc/nginx/conf.d/*.conf; - default_type application/octet-stream; - log_format main '$remote_addr - $remote_user [$time_local] "$request" ' - '$status $body_bytes_sent "$http_referer" ' - '"$http_user_agent" "$http_x_forwarded_for"'; - access_log /var/log/nginx/access.log main; - sendfile on; - #tcp_nopush on; - #keepalive_timeout 0; - keepalive_timeout 65; - } -EOF - -cat </etc/nginx/conf.d/artifactory.conf -ssl_certificate /etc/pki/tls/certs/cert.pem; -ssl_certificate_key /etc/pki/tls/private/cert.key; -ssl_session_cache shared:SSL:1m; -ssl_prefer_server_ciphers on; -## server configuration -server { - listen 443 ssl; - listen 80 ; - server_name ~(?.+)\\.${CERTIFICATE_DOMAIN} artifactory ${ARTIFACTORY_SERVER_NAME}.${CERTIFICATE_DOMAIN}; - if (\$http_x_forwarded_proto = '') { - set \$http_x_forwarded_proto \$scheme; - } - ## Application specific logs - ## access_log /var/log/nginx/artifactory-access.log timing; - ## error_log /var/log/nginx/artifactory-error.log; - rewrite ^/$ /artifactory/webapp/ redirect; - rewrite ^/artifactory/?(/webapp)?$ /artifactory/webapp/ redirect; - chunked_transfer_encoding on; - client_max_body_size 0; - location /artifactory/ { - proxy_read_timeout 2400; - proxy_pass_header Server; - proxy_cookie_path ~*^/.* /; - proxy_pass http://127.0.0.1:8081/artifactory/; - proxy_set_header X-Artifactory-Override-Base-Url - \$http_x_forwarded_proto://\$host:\$server_port/artifactory; - proxy_set_header X-Forwarded-Port \$server_port; - proxy_set_header X-Forwarded-Proto \$http_x_forwarded_proto; - proxy_set_header Host \$http_host; - proxy_set_header X-Forwarded-For \$proxy_add_x_forwarded_for; - } - location / { - proxy_read_timeout 2400; - proxy_pass_header Server; - proxy_cookie_path ~*^/.* /; - proxy_pass http://127.0.0.1:8082; - proxy_set_header X-Artifactory-Override-Base-Url \$http_x_forwarded_proto://\$host:\$server_port/artifactory; - proxy_set_header X-Forwarded-Port \$server_port; - proxy_set_header X-Forwarded-Proto \$http_x_forwarded_proto; - proxy_set_header Host \$http_host; - proxy_set_header X-Forwarded-For \$proxy_add_x_forwarded_for; - } - -} -EOF - -HOSTNAME=$(ip route get 8.8.8.8 | awk '{print $NF; exit}') - -if [ "${IS_PRIMARY}" = "true" ]; then - NODE_NAME=art-primary -else - NODE_NAME=art-$(date +%s$RANDOM) -fi - -# Java options -EXTRA_JAVA_OPTS=$(cat /var/lib/cloud/instance/user-data.txt | grep "^EXTRA_JAVA_OPTS=" | sed "s/EXTRA_JAVA_OPTS=//") -sed -i -e "s/#extraJavaOpts: \"-Xms512m -Xmx2g\"/extraJavaOpts: ${EXTRA_JAVA_OPTS}/" /var/opt/jfrog/artifactory/etc/system.yaml - -# Set MS SQL configuration -cat <>/var/opt/jfrog/artifactory/etc/system.yaml - ## One of: mysql, oracle, mssql, postgresql, mariadb - ## Default: Embedded derby - ## Example for mysql - type: mssql - driver: com.microsoft.sqlserver.jdbc.SQLServerDriver - url: ${DB_URL};databaseName=${DB_NAME};sendStringParametersAsUnicode=false;applicationName=Artifactory Binary Repository - username: ${DB_USER} - password: ${DB_PASSWORD} - -EOF - -mkdir -p /var/opt/jfrog/artifactory/etc/security - -cat </opt/jfrog/artifactory/var/etc/security/master.key -${MASTER_KEY} -EOF - -# NOTE: Path is changed in Artifactory 7. Non-HA configuration -mkdir -p /var/opt/jfrog/artifactory/etc/artifactory -cat </var/opt/jfrog/artifactory/etc/artifactory/binarystore.xml - - - - ${STORAGE_ACCT} - ${STORAGE_ACCT_KEY} - https://${STORAGE_ACCT}.blob.core.windows.net/ - ${STORAGE_CONTAINER} - - -EOF - -cat /var/lib/cloud/instance/user-data.txt | grep "^CERTIFICATE=" | sed "s/CERTIFICATE=//" > /tmp/temp.pem -cat /tmp/temp.pem | sed 's/CERTIFICATE----- /&\n/g' | sed 's/ -----END/\n-----END/g' | awk '{if($0 ~ /----/) {print;} else { gsub(/ /,"\n");print;}}' > /etc/pki/tls/certs/cert.pem -rm /tmp/temp.pem - -cat /var/lib/cloud/instance/user-data.txt | grep "^CERTIFICATE_KEY=" | sed "s/CERTIFICATE_KEY=//" > /tmp/temp.key -cat /tmp/temp.key | sed 's/KEY----- /&\n/' | sed 's/ -----END/\n-----END/' | awk '{if($0 ~ /----/) {print;} else { gsub(/ /,"\n");print;}}' > /etc/pki/tls/private/cert.key -rm /tmp/temp.key - -chown artifactory:artifactory -R /var/opt/jfrog/artifactory/* && chown artifactory:artifactory -R /var/opt/jfrog/artifactory/etc/security && chown artifactory:artifactory -R /var/opt/jfrog/artifactory/etc/* - -# start Artifactory -sleep $((RANDOM % 240)) -service artifactory start -service nginx start -nginx -s reload -echo "INFO: Artifactory installation completed." >> /tmp/artifactory-install.log diff --git a/JFrogContainerRegistry/AzureResourceManager/README.md b/JFrogContainerRegistry/AzureResourceManager/README.md deleted file mode 100644 index 5408864..0000000 --- a/JFrogContainerRegistry/AzureResourceManager/README.md +++ /dev/null @@ -1,58 +0,0 @@ -# Setup JFrog Container Registry - - - - - - - - -This template can help you setup the [JFrog Container Registry](https://www.jfrog.com/confluence/display/JCR/Welcome+to+JFrog+Container+Registry) on Azure. - -## A. Deploy JFrog Container Registry on Azure - -1. Click the "Deploy to Azure" button. - -2. Fill out the settings. Make sure to provide a valid SSL certificate. If using no certificate or one that is self-signed, see [Docker's documentation on client configuration](https://docs.docker.com/registry/insecure/). - -3. Click on "Purchase" to start deploying resources. It will deploy: - * Microsoft SQL database - * Azure Blob storage service - * A VM with NGINX and JFrog Container Registry - * Azure Load Balancer - -4. Once deployment is done. Copy FQDN from Output of deployment template. - -5. Access artifactory using FQDN. - -### Note: -1. Turn off daily backups. Read Documentation provided [here](https://www.jfrog.com/confluence/display/RTF/Managing+Backups) -2. Add an SSL Certificate to access Docker without using the insecure option -3. Input values for 'adminUsername' and 'adminPassword' parameters needs to follow azure VM access rules. -4. Refer to [System Requirements](https://www.jfrog.com/confluence/display/RTF/System+Requirements) for changing 'extraJavaOptions' input parameter value. - -### Steps to setup Artifactory as secure docker registry -You will need a valid SSL certificate for a domain name (for example, artifactory.jfrog.team) -1. Pass your SSL Certificate in parameter `Certificate` as string -2. Pass your SSL Certificate Key in parameter `CertificateKey` as string -3. Create DNS record with an entry that matches your domain name pointing to the load balancer value provided as output in template deployment. -4. You should now be able to access any docker registry using the path method. - * Login: `docker login [domain name]` in our example, that would be `docker login artifactory.jfrog.team` - * Pull/Push to a particular repository: `docker pull [domain name]/[repository name]/[image name]:[tag]` - * Example with our domain, pull from repository `docker-local`, the `latest` `busybox` image - * `docker pull artifactory.jfrog.team/docker-local/busybox:latest` - -### Steps to upgrade Artifactory Version - -1. Login into the VM instance and sudo as root. Use the admin credentials provided in the install setup. -Note: Use load balancer's NAT entries under Azure resources, to get the allocated NAT port for accessing the VM instance. - -2. Upgrade artifactory with following [RPM instructions](https://www.jfrog.com/confluence/display/JCR/Upgrading+JFrog+Container+Registry#UpgradingJFrogContainerRegistry-RPMInstallation). ------- -#### Note: -Supported locations: `East US 2`, `Central US`, `West Central US` and `West Europe`. -Please check the Azure region support for `Standard Sku` property in load balancer for this template to work properly. -Check for SQL server support on specified location. If SQL server is not available in the location, Use 'DB_Location' to specify the location with SQL server support. - - - \ No newline at end of file diff --git a/JFrogContainerRegistry/AzureResourceManager/azuredeploy.json b/JFrogContainerRegistry/AzureResourceManager/azuredeploy.json deleted file mode 100644 index e6688ca..0000000 --- a/JFrogContainerRegistry/AzureResourceManager/azuredeploy.json +++ /dev/null @@ -1,622 +0,0 @@ -{ - "$schema": "https://schema.management.azure.com/schemas/2015-01-01/deploymentTemplate.json#", - "contentVersion": "1.0.0.0", - "parameters": { - "vmSku": { - "type": "string", - "defaultValue": "Standard_D2s_v3", - "metadata": { - "description": "Size of VMs in the VM Scale Set." - } - }, - "clusterName": { - "type": "string", - "maxLength": 61, - "metadata": { - "description": "String used as a base for naming resources. Must be 3-61 characters in length and globally unique across Azure. A hash is prepended to this string for some resources, and resource-specific information is appended." - } - }, - "location": { - "type": "string", - "defaultValue": "[resourceGroup().location]", - "metadata": { - "description": "Location for the resources." - } - }, - "artifactoryVersion": { - "type": "string", - "defaultValue": "7.4.3", - "allowedValues": [ - "7.2.1", - "7.3.2", - "7.4.3" - ], - "metadata": { - "description": "JFrog Container Registry-vm image version to deploy." - } - }, - "masterKey": { - "type": "string", - "defaultValue": "1ce2be4490ca2c662cb79636cf9b7b8e", - "maxLength": 64, - "metadata": { - "description": "Master key for JFrog Container Registry cluster. Generate master.key using command '$openssl rand -hex 16'" - } - }, - "adminUsername": { - "type": "string", - "metadata": { - "description": "Admin username on all VMs. Follow conventions for azure VM admin user name." - } - }, - "adminPassword": { - "type": "securestring", - "metadata": { - "description": "Admin password on all VMs. Follow conventions for azure VM admin password rules." - } - }, - "certificate": { - "type": "string", - "defaultValue": "-----BEGIN CERTIFICATE----- MIIFhzCCA2+gAwIBAgIJALC4r5BQWZE4MA0GCSqGSIb3DQEBCwUAMFoxCzAJBgNV BAYTAlVTMRMwEQYDVQQIDApDYWxpZm9ybmlhMRMwEQYDVQQHDApTYW50YUNsYXJh MQswCQYDVQQKDAJJVDEUMBIGA1UEAwwLKi5sb2NhbGhvc3QwHhcNMTgwMTE3MTk0 NjI4WhcNMTkwMTA4MTk0NjI4WjBaMQswCQYDVQQGEwJVUzETMBEGA1UECAwKQ2Fs aWZvcm5pYTETMBEGA1UEBwwKU2FudGFDbGFyYTELMAkGA1UECgwCSVQxFDASBgNV BAMMCyoubG9jYWxob3N0MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA 7KfOWDQlov8cMa8r/lcJqiWZaH9myQC74Vbe0HXsntQbcvljkjG2P7ebm5dd9Bzc sauNOJpbKf5AhFK1iwJUAkciGc1LR4k8wfWmQM3NPS8hrqrtH20zqNpdFRpNYjja JofwccPNm030GhhZkZ95TpruvmswMDwspl3jfqdcc/eiQsHcKyGnV2a+UAeoqe7J mHhmhRy1MLqAjF5U1GrUYUONA+22iRDJb4c9B91QoWvsnXpdA9NKV/mmA3/rIdx6 Ld2IPRdrIw2K5sAnXsh3bx2oCSvSfussf0x+4XDrnsaHVfjwvfNL8ECOuac2Oi/E WOp9528gOohpFAuwEt63Vl5p8/CC9m0HJDTZBKm2l5eD1kdPIj4PvP9Sn9CxGXKQ E1bxWoFxGX8EyRW0b0NK31N7b8JPZ1SoFNiB5amOMNLvR26a7cQrKumTuJeYK9Ja JaxhMXM7R0DA0Ev8ZG2xmyCygox+1KPSmJOIEpT70BFbj3rKLNqP22ET+zvPuh+2 DdgyrpHFeYkGWjMbWPjK7wJsD2zM8ccoJQfepPz8I4rT0JfrKAQgCGuGOggneaNJ KTVGNOFbj5AXdZ/Q+GvNommyRdq4J7EnqY6L+P25fo5qZ6UZ/iS0tPcvxgn0Fdhs pUPbQyQIDZyxZd3Q1lUIE38ol8P66mS2zbzf8EeOCoUCAwEAAaNQME4wHQYDVR0O BBYEFETAQM/5P7XJ8kevHFj6BPndQOFaMB8GA1UdIwQYMBaAFETAQM/5P7XJ8kev HFj6BPndQOFaMAwGA1UdEwQFMAMBAf8wDQYJKoZIhvcNAQELBQADggIBAJ1TepKv LWYhFmVQcgZwZf/qt1a1cohzJSm6da9RCnnAWC7WC/U117bgSomtrH1v0OysHFhB zBBUeBqI7+OmzAX8dhj+roKkcnFUM/IwlK1eueIIA//CWvEf/o0XExilVS2yCc9d PTpOQBXwk9QinxK36kHdBiGxa7dW0JPnOEEmuMgGORKeLy4J6Ik8iSeFY1SZVcOI +6WWvoKciPlmIeccC+6YVmkeBwhP2o5r5w/UAaO2hSnGvmm4UIj/VJv4VQu7xTUp cIfFz5NtIr80DbqcyPiEMS2ETJ4L/kO4MS5FfeEXyQuXCzmiIDVY6tE3C7+kZmK4 JzPLuWm9ndQoyQySOGfQqvlUR1+YxUdvmu3LrOS5dOA354Q36wHa4wEGUoHU/7GV fYQmmmDSDaNSpXW5PFey6scFyDBS/yYJ0H9EjYb/11HeWYj8Yv5xTWj8nhzJONC8 D6Y5ydlU4PifM2pOf88pTYpmogNwLJWXbql5I9cvMa8APo4yLVqcISU5ynsvFke+ Non+T0mHpJai/hrA9NK+s6EGC1dAX58jy61h6FhOPI1d4s/mov/KMa2t3SfZp5SF 81aR6dHvO56teiK5M1xMkrqG75zh3TMFJJLRFe9XxeB4JeN76URB3mgADOUqkBxd ibSgVqfKwOw4IujEcqMUc5mqSnbLY1Dv+oby -----END CERTIFICATE-----", - "metadata": { - "description": "To use Artifactory as docker registry you need to provide wild card valid Certificate. Provide your SSL Certificate." - } - }, - "certificateKey": { - "type": "string", - "defaultValue": "-----BEGIN PRIVATE KEY----- MIIJRAIBADANBgkqhkiG9w0BAQEFAASCCS4wggkqAgEAAoICAQDsp85YNCWi/xwx ryv+VwmqJZlof2bJALvhVt7Qdeye1Bty+WOSMbY/t5ubl130HNyxq404mlsp/kCE UrWLAlQCRyIZzUtHiTzB9aZAzc09LyGuqu0fbTOo2l0VGk1iONomh/Bxw82bTfQa GFmRn3lOmu6+azAwPCymXeN+p1xz96JCwdwrIadXZr5QB6ip7smYeGaFHLUwuoCM XlTUatRhQ40D7baJEMlvhz0H3VCha+ydel0D00pX+aYDf+sh3Hot3Yg9F2sjDYrm wCdeyHdvHagJK9J+6yx/TH7hcOuexodV+PC980vwQI65pzY6L8RY6n3nbyA6iGkU C7AS3rdWXmnz8IL2bQckNNkEqbaXl4PWR08iPg+8/1Kf0LEZcpATVvFagXEZfwTJ FbRvQ0rfU3tvwk9nVKgU2IHlqY4w0u9HbprtxCsq6ZO4l5gr0lolrGExcztHQMDQ S/xkbbGbILKCjH7Uo9KYk4gSlPvQEVuPesos2o/bYRP7O8+6H7YN2DKukcV5iQZa MxtY+MrvAmwPbMzxxyglB96k/PwjitPQl+soBCAIa4Y6CCd5o0kpNUY04VuPkBd1 n9D4a82iabJF2rgnsSepjov4/bl+jmpnpRn+JLS09y/GCfQV2GylQ9tDJAgNnLFl 3dDWVQgTfyiXw/rqZLbNvN/wR44KhQIDAQABAoICAQDm1pAp7UPBCELCG/I3t0KQ GvjWu17RNcwN86SHhl92VcMolSaQ1bjF0h0Q2ccldHm5PHMWAUpnXcAk0mCO5Yh4 aFZVALEraCxBrZGrqJNH2Q9rxwJhIy2+yLD/Apb09iukZfkdnzaRBKrUQWgs6Xd0 OyAh0YBBrJCI/xAG3M0LuUMnBt3xnHQUhv2gJrhYeble5iJqOSRsEZ+OS/1G7aWX 8kI80MS6UguKpEndv/0EV7eHrHHKZ3Ee+z76Lu52Kw9qaaqYnJ0+pdkVV92PUM9f LXhY6cv7TP4sdbtVv8W1LEWakKaTQhySjwYpBXeZrjpB2QlSlEzFi4WjrfrjjSca UZazm/jY5uDI2cXf35NyZUkbYxIKlGtURtDpoPp5R7XguHSoqLrh2Zsc79mZfNST zFwbhNBVB2nAl6ZyIRNFLjVhQScvlImpIVSVZm5/NiiABIEaxRh8w8C5qRMctSTy KF6rS6as2KsPQHpiu/6nDMqqTZ8UMQ3yXEpai5VwAzKFP67usHheKf4RIXNUn7Xc JxWiI8KfOV5n4cSJK1/R+i+ZpWyQiloao4v7GS/fwZTsILeBLBa0utDmNs5aJgVK cEagRjVGAeAEc2W+jXmSqtZRHQowJmEKOARMn4lI+duziSCjIfPH6xIDAUhVlc/K u03432NupfPepW6BYVBgQQKCAQEA/+CD2uiRZgmzuEn/vn/u7jGFjETdUQmfl5kX pMTtueXyQxHBRwBCZqq885doozeQd7mLRcW+klngq1NmnEnjx+NfUzFJLpEmQO1/ AMHUpYpZY4jOyntx9cBy+M+DUfNtdsJUz+VOe3HO5/lJJf+gSgpVp2ku1oOrgEeH a71aGIXOsiOQ/fHL4Q0CuylersD5Dq4Tdf/u6rr4NbwOZQCQ9WH0uTckA9SkjJFu iHXblg8j9RUNbj89WPrEulKA98duFuLvGTeohcAPQ8f60Z7sxDLGLRyRvhUO4EBr hTTmcfI2LsPWSo+X+n6eBqfUfGZub2qN+d2B08qKgnGdgFEf6QKCAQEA7MTtAphl lswq4kPvDkPHMqJhmPBgb5NAUzE2Z8yjJY3IX6zxinSDnuMwEzCinKe7rzv6aYIh klviND/oyLOxVlLESZu62epokgIey05sv9a/030z7q5hradNzcMP1VfGVs6IeOvr 3Kit4T7LI1L2eXwD1Yks6uHHw8lHAlyrrlbwCEmzqElKs0YtkvNa4HFgesFNnObe f8C29LOPZMqje7iAT91823MGI9NML9qGYON/ZLc4uCB9no+o6ZOTQHqX1xxSWv5D 66KGiRnUC/RAq6RbTVn3NxFgvb3k0rejbQbxW5KCri1E4sTw+pZ5bIRUJcXi+J+Z Tg88lVbmqXfwPQKCAQEA94yShDr0UC+au/R7hCXpVnB6r5YAN+KDj/sAsNwE0hDx LIoE31gU5ZbRbylQhne/QNU1NK93C8gAYEAzyYiC4mPLWYUZNAAhbjdW47iirfUH PhChX6vGOOeTU7wPZD2J7ZdczjUelLcqYar/Zc/Fl1wgOfK86bRBO733+fgbLhZm PlnCcKx5fqVDuybu/0qaqeUn1sVgs59nezURCA5gL8YxKO973GjhOU2KDmNXqfnD 49wWPk7YXzldEpW3SACdNW8futnqJFwHaKAUvLBwh/BHYmV9atScq8AnRZxERoD6 govcyg3aDvJomC/OlvvSY+BGszHl5KzTDBg3NGlH4QKCAQA/71lU5xQfqVg3K0MF ZhYHPUP/iYFw/6FSFarsUp0Higa+lzPOQHI+WHjl5a8zgDO1OQwAq6wnGnq1w0A3 2hYcClOI0O2e5KaCLuJj4fSJxRKdqGR6okosG05uLqs63+3mCPVfOc3CEyaI+Wzf SArYeT2LzvP7JSbNXq+3GpEdjcpZYpWJ7uimCmBKGz7B9runykUMBme0tbRx1X72 J6YHxaWYa2XI2IGi8O7UyTyaMzR2XOeLCPMC+yYQlNIhijkwVCyE974dhhCwOvJA nB9Oeh5Rf+a6zw2BjyKYKBCQY1yPbrutDvpYBfhQoot9Wyph3NLScj5yjri8VvAI eSO9AoIBAQDyUx5YUgHgpoJtRZ+8PGQBZHm5L5HJhvfUs96I9Z4lZSXnCmEJyOWn LIob8c0n4hU1EXdbbl+7eRQgG3oGKyF0XXhuaP3vHprIBW6tm9kCGORTliZOaZdW 0Mj9GUv2de1r8anwJMFvIMXsuO08rsGzsIt7DrNYa0YSMkeDwPenRfDHXOYH2fjf RKjlP3fQr/iLL/YuMGaNxzIeyWPZ2WTUUC0bllNxMTZmztuMkPNb7fhhs0hLecXM fE2nbwUaGwMZaails1+5G3HvEAlChJ1GN9XnYxrtfqq93tYELWBiNcv1LaMAFvj8 S+j1+iUKGGhwVmhqh75q5do3+VF3XlAh -----END PRIVATE KEY-----", - "metadata": { - "description": "Provide your SSL Certificate key" - } - }, - "certificateDomain": { - "type": "string", - "minLength": 1, - "defaultValue": "artifactory", - "metadata": { - "description": "Provide your Certificate Domain Name. For e.g jfrog.team for certificate with *.jfrog.team" - } - }, - "artifactoryServerName": { - "type": "string", - "minLength": 1, - "defaultValue": "artifactory", - "metadata": { - "description": "Provide artifactory server name to be used in Nginx. e.g artifactory for artifactory.jfrog.team" - } - }, - "extraJavaOptions": { - "type": "string", - "minLength": 1, - "defaultValue": "-server -Xms2g -Xmx12g -Xss256k -XX:+UseG1GC -XX:OnOutOfMemoryError=\\\"kill -9 %p\\\"", - "metadata": { - "description": "Setting Java Memory Parameters for Artifactory. Learn about system requirements for Artifactory https://www.jfrog.com/confluence/display/RTF/System+Requirements#SystemRequirements-RecommendedHardware." - } - }, - "DB_Admin_User": { - "type": "string", - "minLength": 1, - "metadata": { - "description": "Database Admin user name" - } - }, - "DB_Admin_Password": { - "type": "securestring", - "minLength": 1, - "metadata": { - "description": "Database Admin password" - } - }, - "DB_Name": { - "type": "string", - "minLength": 1, - "metadata": { - "description": "Database name" - } - }, - "DB_Edition": { - "type": "string", - "minLength": 1, - "defaultValue": "Basic", - "allowedValues": [ - "Basic", - "Standard", - "Premium" - ], - "metadata": { - "description": "Database Edition" - } - }, - "storageAccountType": { - "type": "string", - "defaultValue": "Standard_LRS", - "allowedValues": [ - "Standard_LRS", - "Standard_GRS", - "Standard_ZRS" - ], - "metadata": { - "description": "Storage Account type" - } - }, - "_artifactsLocation": { - "type": "string", - "metadata": { - "description": "The base URI where artifacts required by this template are located. When the template is deployed using the accompanying scripts, a private location in the subscription will be used and this value will be automatically generated." - }, - "defaultValue": "https://raw.githubusercontent.com/JFrogDev/JFrog-Cloud-Installers/master/JFrogContainerRegistry/AzureResourceManager/" - }, - "_artifactsLocationSasToken": { - "type": "securestring", - "metadata": { - "description": "The sasToken required to access _artifactsLocation. When the template is deployed using the accompanying scripts, a sasToken will be automatically generated." - }, - "defaultValue": "" - } - }, - "variables": { - "namingInfix": "[toLower(substring(concat(parameters('clusterName'), uniqueString(resourceGroup().id)), 0, 9))]", - "addressPrefix": "10.0.0.0/16", - "subnetPrimaryPrefix": "10.0.1.0/24", - "virtualNetworkName": "[concat(variables('namingInfix'), 'vnet')]", - "subnetPrimaryName": "[concat(variables('namingInfix'), 'primarySubnet')]", - "scaleSetPrimaryName": "[concat(variables('namingInfix'), 'primaryScaleset')]", - "lbName": "[concat(variables('namingInfix'), 'lb')]", - "bepoolPrimaryName": "[concat(variables('lbName'), 'primaryBepool')]", - "fepoolPrimaryName": "[concat(variables('lbName'), 'primaryFepool')]", - "bepoolPrimaryID": "[resourceId('Microsoft.Network/loadBalancers/backendAddressPools', variables('lbName'), variables('bepoolPrimaryName'))]", - "feIpConfigPrimaryName": "[concat(variables('fepoolPrimaryName'), 'primaryIpConfig')]", - "feIpConfigPrimaryId": "[resourceId('Microsoft.Network/loadBalancers/frontendIpConfigurations', variables('lbName'), variables('feIpConfigPrimaryName'))]", - "pipPrimaryName": "[concat(variables('namingInfix'), 'primaryPip')]", - "nicPrimaryName": "[concat(variables('namingInfix'), 'primaryNic')]", - "natPoolPrimaryName": "[concat(variables('lbName'), 'primaryNatpool')]", - "ipConfigName": "[concat(variables('namingInfix'), 'ipconfig')]", - "httpProbePrimaryName": "primaryHttpProbe", - "httpsProbePrimaryName": "primaryHttpsProbe", - "storageAccountName": "[concat(variables('namingInfix'), 'storage')]", - "vmStorageAccountContainerName": "filestore", - "azureSqlServerName": "[concat(variables('namingInfix'), 'sqlsrv')]", - "DB_Name": "[parameters('DB_Name')]", - "DB_Admin_User": "[parameters('DB_Admin_User')]", - "DB_Admin_Password": "[parameters('DB_Admin_Password')]", - "DB_Edition": "[parameters('DB_Edition')]", - "DB_Location": "[parameters('location')]", - "masterKey": "[parameters('masterKey')]", - "certificate": "[parameters('certificate')]", - "certificateKey": "[parameters('certificateKey')]", - "certificateDomain": "[parameters('certificateDomain')]", - "artifactoryServerName": "[parameters('artifactoryServerName')]", - "extraJavaOptions": "[parameters('extraJavaOptions')]", - "osType": { - "publisher": "jfrog", - "offer": "jfrogcontainerregistry-vm", - "sku": "artifactory-jcr-private", - "version": "[parameters('artifactoryVersion')]" - }, - "imageReference": "[variables('osType')]", - "dbTemplate": "azureDBDeploy.json", - "dbTemplateLocation": "[uri(parameters('_artifactsLocation'), concat('nested/', variables('dbTemplate'), parameters('_artifactsLocationSasToken')))]", - "nsgName": "[concat(variables('namingInfix'), 'nsg')]" - }, - "resources": [ - { - "apiVersion": "2019-05-01", - "name": "pid-04c1c376-5d4b-4771-9a7f-054f5910dcef", - "type": "Microsoft.Resources/deployments", - "properties": { - "mode": "Incremental", - "template": { - "$schema": "https://schema.management.azure.com/schemas/2015-01-01/deploymentTemplate.json#", - "contentVersion": "1.0.0.0", - "resources": [] - } - } - }, - { - "type": "Microsoft.Network/networkSecurityGroups", - "location": "[parameters('location')]", - "name": "[variables('nsgName')]", - "apiVersion": "2018-07-01", - "properties": { - "securityRules": [ - { - "name": "ssh-rule", - "properties": { - "description": "Allow SSH", - "protocol": "Tcp", - "sourcePortRange": "*", - "destinationPortRange": "22", - "sourceAddressPrefix": "Internet", - "destinationAddressPrefix": "*", - "access": "Allow", - "priority": 100, - "direction": "Inbound" - } - }, - { - "name": "http-artifactory-rule", - "properties": { - "description": "Allow HTTP", - "protocol": "Tcp", - "sourcePortRange": "*", - "destinationPortRange": "8081", - "sourceAddressPrefix": "Internet", - "destinationAddressPrefix": "*", - "access": "Allow", - "priority": 101, - "direction": "Inbound" - } - }, - { - "name": "http-nginx-rule", - "properties": { - "description": "Allow HTTP", - "protocol": "Tcp", - "sourcePortRange": "*", - "destinationPortRange": "80", - "sourceAddressPrefix": "Internet", - "destinationAddressPrefix": "*", - "access": "Allow", - "priority": 102, - "direction": "Inbound" - } - }, - { - "name": "https-nginx-rule", - "properties": { - "description": "Allow HTTP", - "protocol": "Tcp", - "sourcePortRange": "*", - "destinationPortRange": "443", - "sourceAddressPrefix": "Internet", - "destinationAddressPrefix": "*", - "access": "Allow", - "priority": 103, - "direction": "Inbound" - } - }, - { - "name": "membership-rule", - "properties": { - "description": "Allow HTTP", - "protocol": "Tcp", - "sourcePortRange": "*", - "destinationPortRange": "10001", - "sourceAddressPrefix": "Internet", - "destinationAddressPrefix": "*", - "access": "Allow", - "priority": 105, - "direction": "Inbound" - } - } - ] - } - }, - { - "type": "Microsoft.Network/virtualNetworks", - "name": "[variables('virtualNetworkName')]", - "location": "[parameters('location')]", - "apiVersion": "2018-07-01", - "dependsOn": [ - "[concat('Microsoft.Network/networkSecurityGroups/', variables('nsgName'))]" - ], - "properties": { - "addressSpace": { - "addressPrefixes": [ - "[variables('addressPrefix')]" - ] - }, - "subnets": [ - { - "name": "[variables('subnetPrimaryName')]", - "properties": { - "addressPrefix": "[variables('subnetPrimaryPrefix')]", - "networkSecurityGroup": { - "id": "[resourceId('Microsoft.Network/networkSecurityGroups', variables('nsgName'))]" - } - } - } - ] - } - }, - { - "apiVersion": "2018-07-01", - "type": "Microsoft.Network/networkInterfaces", - "name": "[variables('nicPrimaryName')]", - "location": "[parameters('location')]", - "dependsOn": [ - "[concat('Microsoft.Network/publicIPAddresses/', variables('pipPrimaryName'))]", - "[concat('Microsoft.Network/virtualNetworks/', variables('virtualNetworkName'))]", - "[resourceId('Microsoft.Network/networkSecurityGroups', variables('nsgName'))]" - ], - "properties": { - "ipConfigurations": [ - { - "name": "ipconfig1", - "properties": { - "privateIPAllocationMethod": "Dynamic", - "subnet": { - "id": "[resourceId('Microsoft.Network/virtualNetworks/subnets', variables('virtualNetworkName'), variables('subnetPrimaryName'))]" - } - } - } - ], - "networkSecurityGroup": { - "id": "[resourceId('Microsoft.Network/networkSecurityGroups', variables('nsgName'))]" - } - } - }, - { - "type": "Microsoft.Network/publicIPAddresses", - "name": "[variables('pipPrimaryName')]", - "location": "[parameters('location')]", - "sku": { - "name": "Standard" - }, - "apiVersion": "2018-07-01", - "properties": { - "publicIPAllocationMethod": "Static", - "dnsSettings": { - "domainNameLabel": "[variables('namingInfix')]" - } - } - }, - { - "type": "Microsoft.Network/loadBalancers", - "name": "[variables('lbName')]", - "location": "[parameters('location')]", - "apiVersion": "2018-07-01", - "sku": { - "name": "Standard" - }, - "dependsOn": [ - "[concat('Microsoft.Network/publicIPAddresses/', variables('pipPrimaryName'))]" - ], - "tags":{ - "displayName": "Load Balancer" - }, - "properties": { - "frontendIPConfigurations": [ - { - "name": "[variables('feIpConfigPrimaryName')]", - "properties": { - "publicIPAddress": { - "id": "[resourceId('Microsoft.Network/publicIPAddresses', variables('pipPrimaryName'))]" - } - } - } - ], - "backendAddressPools": [ - { - "name": "[variables('bepoolPrimaryName')]" - } - ], - "inboundNatPools": [ - { - "name": "[variables('natPoolPrimaryName')]", - "properties": { - "frontendIPConfiguration": { - "id": "[variables('feIpConfigPrimaryId')]" - }, - "protocol": "tcp", - "frontendPortRangeStart": 10022, - "frontendPortRangeEnd": 11022, - "backendPort": 22 - } - } - ], - "loadBalancingRules": [ - { - "name": "HTTPRulePrimary", - "properties": { - "loadDistribution": "Default", - "frontendIPConfiguration": { - "id": "[variables('feIpConfigPrimaryId')]" - }, - "backendAddressPool": { - "id": "[variables('bepoolPrimaryID')]" - }, - "protocol": "Tcp", - "frontendPort": 80, - "backendPort": 80, - "enableFloatingIP": false, - "idleTimeoutInMinutes": 5, - "probe": { - "id": "[resourceId('Microsoft.Network/loadBalancers/probes', variables('lbName'), variables('httpProbePrimaryName'))]" - } - } - }, - { - "name": "HTTPSRulePrimary", - "properties": { - "loadDistribution": "Default", - "frontendIPConfiguration": { - "id": "[variables('feIpConfigPrimaryId')]" - }, - "backendAddressPool": { - "id": "[variables('bepoolPrimaryID')]" - }, - "protocol": "Tcp", - "frontendPort": 443, - "backendPort": 443, - "enableFloatingIP": false, - "idleTimeoutInMinutes": 5, - "probe": { - "id": "[resourceId('Microsoft.Network/loadBalancers/probes', variables('lbName'), variables('httpsProbePrimaryName'))]" - } - } - } - ], - "probes": [ - { - "name": "[variables('httpProbePrimaryName')]", - "properties": { - "protocol": "Http", - "requestPath": "/artifactory/api/system/ping", - "port": 80, - "intervalInSeconds": 60, - "numberOfProbes": 5 - } - }, - { - "name": "[variables('httpsProbePrimaryName')]", - "properties": { - "protocol": "Tcp", - "port": 443, - "intervalInSeconds": 60, - "numberOfProbes": 5 - } - } - ] - } - }, - { - "apiVersion": "2018-07-01", - "type": "Microsoft.Storage/storageAccounts", - "name": "[variables('storageAccountName')]", - "location": "[parameters('location')]", - "sku": { - "name": "[parameters('storageAccountType')]" - }, - "tags":{ - "displayName": "Artifactory Storage Account" - }, - "kind": "Storage", - "properties": {} - }, - { - "type": "Microsoft.Resources/deployments", - "name": "deploySQLDB", - "apiVersion": "2018-07-01", - "properties": { - "mode": "Incremental", - "templateLink": { - "uri": "[variables('dbTemplateLocation')]", - "contentVersion": "1.0.0.0" - }, - "parameters": { - "db_user": { - "value": "[parameters('DB_Admin_User')]" - }, - "db_password": { - "value": "[parameters('DB_Admin_Password')]" - }, - "db_server": { - "value": "[variables('azureSqlServerName')]" - }, - "db_name": { - "value": "[parameters('DB_Name')]" - }, - "db_edition": { - "value": "[variables('DB_Edition')]" - }, - "db_location": { - "value": "[variables('DB_Location')]" - } - } - } - }, - { - "type": "Microsoft.Compute/virtualMachineScaleSets", - "name": "[variables('scaleSetPrimaryName')]", - "location": "[parameters('location')]", - "apiVersion": "2018-10-01", - "dependsOn": [ - "[concat('Microsoft.Network/loadBalancers/', variables('lbName'))]", - "[concat('Microsoft.Network/virtualNetworks/', variables('virtualNetworkName'))]", - "[concat('Microsoft.Resources/deployments/', 'deploySQLDB')]", - "[concat('Microsoft.Storage/storageAccounts/', variables('storageAccountName'))]" - ], - "plan": { - "name": "artifactory-jcr-private", - "publisher": "jfrog", - "product": "jfrogcontainerregistry-vm" - }, - "sku": { - "name": "[parameters('vmSku')]", - "tier": "Standard", - "capacity": "1" - }, - "properties": { - "singlePlacementGroup": true, - "overprovision": "false", - "upgradePolicy": { - "mode": "Manual" - }, - "virtualMachineProfile": { - "storageProfile": { - "osDisk": { - "caching": "ReadWrite", - "diskSizeGB": "250", - "createOption": "FromImage" - }, - "imageReference": "[variables('imageReference')]" - }, - "osProfile": { - "computerNamePrefix": "[variables('namingInfix')]", - "adminUsername": "[parameters('adminUsername')]", - "adminPassword": "[parameters('adminPassword')]", - "customData": "[base64(concat('#INSTALL SCRIPT INPUTS\nCERTIFICATE_KEY=',variables('certificateKey'),'\nCERTIFICATE=', variables('certificate'),'\nCERTIFICATE_DOMAIN=',variables('certificateDomain'),'\nARTIFACTORY_SERVER_NAME=',variables('artifactoryServerName'),'\nEXTRA_JAVA_OPTS=',variables('extraJavaOptions'),'\nJDBC_STR=',reference('Microsoft.Resources/deployments/deploySQLDB').outputs.jdbcConnString.value,'\nDB_NAME=',variables('DB_Name'),'\nDB_ADMIN_USER=',variables('DB_Admin_User'),'\nDB_ADMIN_PASSWD=',variables('DB_Admin_Password'),'\nSTO_ACT_NAME=',variables('storageAccountName'),'\nSTO_ACT_ENDPOINT=',reference(resourceId('Microsoft.Storage/storageAccounts/', variables('storageAccountName'))).primaryEndpoints.blob,'\nSTO_CTR_NAME=',variables('vmStorageAccountContainerName'),'\nSTO_ACT_KEY=',listKeys(resourceId('Microsoft.Storage/storageAccounts', variables('storageAccountName')), '2018-07-01').keys[0].value,'\nMASTER_KEY=',variables('masterKey'),'\nIS_PRIMARY=','true','\n'))]" - }, - "networkProfile": { - "networkInterfaceConfigurations": [ - { - "name": "[variables('nicPrimaryName')]", - "properties": { - "primary": true, - "ipConfigurations": [ - { - "name": "[concat(variables('ipConfigName'),'1')]", - "properties": { - "subnet": { - "id": "[resourceId('Microsoft.Network/virtualNetworks/subnets', variables('virtualNetworkName'), variables('subnetPrimaryName'))]" - }, - "loadBalancerBackendAddressPools": [ - { - "id": "[resourceId('Microsoft.Network/loadBalancers/backendAddressPools', variables('lbName'), variables('bePoolPrimaryName'))]" - } - ], - "loadBalancerInboundNatPools": [ - { - "id": "[resourceId('Microsoft.Network/loadBalancers/inboundNatPools', variables('lbName'), variables('natPoolPrimaryName'))]" - } - ] - } - } - ] - } - } - ] - }, - "extensionProfile": { - "extensions": [ - { - "name": "extension1", - "properties": { - "publisher": "Microsoft.Azure.Extensions", - "type": "CustomScript", - "typeHandlerVersion": "2.0", - "autoUpgradeMinorVersion": false, - "settings": { - "fileUris": [ - "[uri(parameters('_artifactsLocation'), concat('scripts/install_artifactory7.sh', parameters('_artifactsLocationSasToken')))]" - ] - }, - "protectedSettings": { - "commandToExecute": "sh install_artifactory7.sh" - } - } - } - ] - } - } - } - } - ], - "outputs": { - "fqdn": { - "value": "[reference(resourceId('Microsoft.Network/publicIPAddresses',variables('pipPrimaryName')),'2018-07-01').dnsSettings.fqdn]", - "type": "string" - } - } -} \ No newline at end of file diff --git a/JFrogContainerRegistry/AzureResourceManager/azuredeploy.parameters.json b/JFrogContainerRegistry/AzureResourceManager/azuredeploy.parameters.json deleted file mode 100644 index 5c200f7..0000000 --- a/JFrogContainerRegistry/AzureResourceManager/azuredeploy.parameters.json +++ /dev/null @@ -1,27 +0,0 @@ -{ - "$schema": "https://schema.management.azure.com/schemas/2015-01-01/deploymentParameters.json#", - "contentVersion": "1.0.0.0", - "parameters": { - "clusterName": { - "value": "GEN-UNIQUE" - }, - "adminUsername": { - "value": "GEN-UNIQUE" - }, - "adminPassword": { - "value": "GEN-PASSWORD" - }, - "DB_Admin_User": { - "value": "GEN-UNIQUE" - }, - "DB_Admin_Password": { - "value": "GEN-PASSWORD" - }, - "DB_Name": { - "value": "GEN-UNIQUE" - }, - "masterKey": { - "value": "35767fa0164bac66b6cccb8880babefb" - } - } -} \ No newline at end of file diff --git a/JFrogContainerRegistry/AzureResourceManager/images/HA_Diagram.png b/JFrogContainerRegistry/AzureResourceManager/images/HA_Diagram.png deleted file mode 100644 index 98cd3ee..0000000 Binary files a/JFrogContainerRegistry/AzureResourceManager/images/HA_Diagram.png and /dev/null differ diff --git a/JFrogContainerRegistry/AzureResourceManager/images/add_licenses.png b/JFrogContainerRegistry/AzureResourceManager/images/add_licenses.png deleted file mode 100644 index 3a06f9d..0000000 Binary files a/JFrogContainerRegistry/AzureResourceManager/images/add_licenses.png and /dev/null differ diff --git a/JFrogContainerRegistry/AzureResourceManager/nested/azureDBDeploy.json b/JFrogContainerRegistry/AzureResourceManager/nested/azureDBDeploy.json deleted file mode 100644 index 8c608f5..0000000 --- a/JFrogContainerRegistry/AzureResourceManager/nested/azureDBDeploy.json +++ /dev/null @@ -1,96 +0,0 @@ -{ - "$schema": "http://schema.management.azure.com/schemas/2015-01-01/deploymentTemplate.json#", - "contentVersion": "1.0.0.0", - "parameters": { - "db_user": { - "type": "string", - "minLength": 1 - }, - "db_password": { - "type": "securestring" - }, - "db_server": { - "type": "string", - "minLength": 1 - }, - "db_name": { - "type": "string", - "minLength": 1 - }, - "db_location": { - "type": "string", - "defaultValue": "" - }, - "db_edition": { - "type": "string", - "allowedValues": [ - "Basic", - "Standard", - "Premium" - ] - } - }, - "variables": { - "rtdbCollation": "Latin1_General_100_CS_AS", - "db_location": "[parameters('db_location')]" - }, - "resources": [ - { - "name": "[parameters('db_server')]", - "type": "Microsoft.Sql/servers", - "kind": "v12.0", - "location": "[variables('db_location')]", - "apiVersion": "2015-05-01-preview", - "dependsOn": [ - - ], - "tags": { - "displayName": "artifactoryDB" - }, - "properties": { - "administratorLogin": "[parameters('db_user')]", - "administratorLoginPassword": "[parameters('db_password')]", - "version": "12.0" - }, - "resources": [ - { - "name": "[uniqueString(parameters('db_server'), 'AllowAllWindowsAzureIps' )]", - "type": "firewallrules", - "location": "[variables('db_location')]", - "apiVersion": "2015-05-01-preview", - "dependsOn": [ - "[concat('Microsoft.Sql/servers/', parameters('db_server'))]" - ], - "properties": { - "startIpAddress": "0.0.0.0", - "endIpAddress": "0.0.0.0" - } - }, - { - "name": "[parameters('db_name')]", - "type": "databases", - "kind": "v12.0,user", - "location": "[variables('db_location')]", - "apiVersion": "2015-05-01-preview", - "dependsOn": [ - "[parameters('db_server')]" - ], - "tags": { - "displayName": "artifactoryDB" - }, - "properties": { - "edition": "[parameters('db_edition')]", - "maxSizeBytes": "1073741824", - "collation": "[variables('rtdbCollation')]" - } - } - ] - } - ], - "outputs": { - "jdbcConnString": { - "type": "string", - "value": "[concat('jdbc:sqlserver://', reference(concat('Microsoft.Sql/servers/', parameters('db_server'))).fullyQualifiedDomainName, ':1433')]" - } - } -} diff --git a/JFrogContainerRegistry/AzureResourceManager/scripts/install_artifactory.sh b/JFrogContainerRegistry/AzureResourceManager/scripts/install_artifactory.sh deleted file mode 100644 index d033b1d..0000000 --- a/JFrogContainerRegistry/AzureResourceManager/scripts/install_artifactory.sh +++ /dev/null @@ -1,206 +0,0 @@ -#!/bin/bash -DB_URL=$(cat /var/lib/cloud/instance/user-data.txt | grep "^JDBC_STR" | sed "s/JDBC_STR=//") -DB_NAME=$(cat /var/lib/cloud/instance/user-data.txt | grep "^DB_NAME=" | sed "s/DB_NAME=//") -DB_USER=$(cat /var/lib/cloud/instance/user-data.txt | grep "^DB_ADMIN_USER=" | sed "s/DB_ADMIN_USER=//") -DB_PASSWORD=$(cat /var/lib/cloud/instance/user-data.txt | grep "^DB_ADMIN_PASSWD=" | sed "s/DB_ADMIN_PASSWD=//") -STORAGE_ACCT=$(cat /var/lib/cloud/instance/user-data.txt | grep "^STO_ACT_NAME=" | sed "s/STO_ACT_NAME=//") -STORAGE_ACT_ENDPOINT=$(cat /var/lib/cloud/instance/user-data.txt | grep "^STO_ACT_ENDPOINT=" | sed "s/STO_ACT_ENDPOINT=//") -STORAGE_CONTAINER=$(cat /var/lib/cloud/instance/user-data.txt | grep "^STO_CTR_NAME=" | sed "s/STO_CTR_NAME=//") -STORAGE_ACCT_KEY=$(cat /var/lib/cloud/instance/user-data.txt | grep "^STO_ACT_KEY=" | sed "s/STO_ACT_KEY=//") -MASTER_KEY=$(cat /var/lib/cloud/instance/user-data.txt | grep "^MASTER_KEY=" | sed "s/MASTER_KEY=//") -IS_PRIMARY=$(cat /var/lib/cloud/instance/user-data.txt | grep "^IS_PRIMARY=" | sed "s/IS_PRIMARY=//") - - -UBUNTU_CODENAME=$(cat /etc/lsb-release | grep "^DISTRIB_CODENAME=" | sed "s/DISTRIB_CODENAME=//") - -export DEBIAN_FRONTEND=noninteractive - -#Generate Self-Signed Cert -mkdir -p /etc/pki/tls/private/ /etc/pki/tls/certs/ -openssl req -nodes -x509 -newkey rsa:4096 -keyout /etc/pki/tls/private/example.key -out /etc/pki/tls/certs/example.pem -days 356 -subj "/C=US/ST=California/L=SantaClara/O=IT/CN=*.localhost" - -CERTIFICATE_DOMAIN=$(cat /var/lib/cloud/instance/user-data.txt | grep "^CERTIFICATE_DOMAIN=" | sed "s/CERTIFICATE_DOMAIN=//") -[ -z "$CERTIFICATE_DOMAIN" ] && CERTIFICATE_DOMAIN=artifactory - -ARTIFACTORY_SERVER_NAME=$(cat /var/lib/cloud/instance/user-data.txt | grep "^ARTIFACTORY_SERVER_NAME=" | sed "s/ARTIFACTORY_SERVER_NAME=//") -[ -z "$ARTIFACTORY_SERVER_NAME" ] && ARTIFACTORY_SERVER_NAME=artifactory - -#Configuring nginx -rm /etc/nginx/sites-enabled/default - -cat </etc/nginx/nginx.conf - #user nobody; - worker_processes 1; - error_log /var/log/nginx/error.log info; - #pid logs/nginx.pid; - events { - worker_connections 1024; - } - - http { - include mime.types; - variables_hash_max_size 1024; - variables_hash_bucket_size 64; - server_names_hash_max_size 4096; - server_names_hash_bucket_size 128; - types_hash_max_size 2048; - types_hash_bucket_size 64; - proxy_read_timeout 2400s; - client_header_timeout 2400s; - client_body_timeout 2400s; - proxy_connect_timeout 75s; - proxy_send_timeout 2400s; - proxy_buffer_size 32k; - proxy_buffers 40 32k; - proxy_busy_buffers_size 64k; - proxy_temp_file_write_size 250m; - proxy_http_version 1.1; - client_body_buffer_size 128k; - - include /etc/nginx/conf.d/*.conf; - default_type application/octet-stream; - log_format main '$remote_addr - $remote_user [$time_local] "$request" ' - '$status $body_bytes_sent "$http_referer" ' - '"$http_user_agent" "$http_x_forwarded_for"'; - access_log /var/log/nginx/access.log main; - sendfile on; - #tcp_nopush on; - #keepalive_timeout 0; - keepalive_timeout 65; - } -EOF - -cat </etc/nginx/conf.d/artifactory.conf -ssl_certificate /etc/pki/tls/certs/cert.pem; -ssl_certificate_key /etc/pki/tls/private/cert.key; -ssl_session_cache shared:SSL:1m; -ssl_prefer_server_ciphers on; -## server configuration -server { - listen 443 ssl; - listen 80 ; - server_name ~(?.+)\\.${CERTIFICATE_DOMAIN} artifactory ${ARTIFACTORY_SERVER_NAME}.${CERTIFICATE_DOMAIN}; - if (\$http_x_forwarded_proto = '') { - set \$http_x_forwarded_proto \$scheme; - } - ## Application specific logs - ## access_log /var/log/nginx/artifactory-access.log timing; - ## error_log /var/log/nginx/artifactory-error.log; - rewrite ^/$ /artifactory/webapp/ redirect; - rewrite ^/artifactory/?(/webapp)?$ /artifactory/webapp/ redirect; - rewrite ^/(v1|v2)/(.*) /artifactory/api/docker/\$repo/\$1/\$2; - chunked_transfer_encoding on; - client_max_body_size 0; - location /artifactory/ { - proxy_read_timeout 2400; - proxy_pass_header Server; - proxy_cookie_path ~*^/.* /; - proxy_pass http://127.0.0.1:8081/artifactory/; - proxy_set_header X-Artifactory-Override-Base-Url - \$http_x_forwarded_proto://\$host:\$server_port/artifactory; - proxy_set_header X-Forwarded-Port \$server_port; - proxy_set_header X-Forwarded-Proto \$http_x_forwarded_proto; - proxy_set_header Host \$http_host; - proxy_set_header X-Forwarded-For \$proxy_add_x_forwarded_for; - } -} -EOF - -HOSTNAME=$(ip route get 8.8.8.8 | awk '{print $NF; exit}') - -if [ "${IS_PRIMARY}" = "true" ]; then - NODE_NAME=art-primary -else - NODE_NAME=art-$(date +%s$RANDOM) -fi - -cat </var/opt/jfrog/artifactory/etc/ha-node.properties -node.id=${NODE_NAME} -artifactory.ha.data.dir=/var/opt/jfrog/artifactory/data -context.url=http://${HOSTNAME}:8081/artifactory -access.context.url=http://${HOSTNAME}:8081/access -membership.port=10001 -hazelcast.interface=${HOSTNAME} -primary=${IS_PRIMARY} -EOF - -cat </var/opt/jfrog/artifactory/etc/db.properties -type=mssql -driver=com.microsoft.sqlserver.jdbc.SQLServerDriver -url=${DB_URL};databaseName=${DB_NAME};sendStringParametersAsUnicode=false;applicationName=Artifactory Binary Repository -username=${DB_USER} -password=${DB_PASSWORD} -EOF - -mkdir -p /var/opt/jfrog/artifactory/etc/security - -cat </var/opt/jfrog/artifactory/etc/security/master.key -${MASTER_KEY} -EOF - -cat </var/opt/jfrog/artifactory/etc/binarystore.xml - - - - - - - - - - - - - - - - - crossNetworkStrategy - crossNetworkStrategy - 2 - 1 - - - - - remote - - - - local - - - - - ${STORAGE_ACCT} - ${STORAGE_ACCT_KEY} - ${STORAGE_ACT_ENDPOINT} - ${STORAGE_CONTAINER} - - -EOF - -HOSTNAME=$(hostname -i) -sed -i -e "s/art1/art-$(date +%s$RANDOM)/" /var/opt/jfrog/artifactory/etc/ha-node.properties -sed -i -e "s/127.0.0.1/$HOSTNAME/" /var/opt/jfrog/artifactory/etc/ha-node.properties -sed -i -e "s/172.25.0.3/$HOSTNAME/" /var/opt/jfrog/artifactory/etc/ha-node.properties - -cat /var/lib/cloud/instance/user-data.txt | grep "^CERTIFICATE=" | sed "s/CERTIFICATE=//" > /tmp/temp.pem -cat /tmp/temp.pem | sed 's/CERTIFICATE----- /&\n/g' | sed 's/ -----END/\n-----END/g' | awk '{if($0 ~ /----/) {print;} else { gsub(/ /,"\n");print;}}' > /etc/pki/tls/certs/cert.pem -rm /tmp/temp.pem - -cat /var/lib/cloud/instance/user-data.txt | grep "^CERTIFICATE_KEY=" | sed "s/CERTIFICATE_KEY=//" > /tmp/temp.key -cat /tmp/temp.key | sed 's/KEY----- /&\n/' | sed 's/ -----END/\n-----END/' | awk '{if($0 ~ /----/) {print;} else { gsub(/ /,"\n");print;}}' > /etc/pki/tls/private/cert.key -rm /tmp/temp.key - -EXTRA_JAVA_OPTS=$(cat /var/lib/cloud/instance/user-data.txt | grep "^EXTRA_JAVA_OPTS=" | sed "s/EXTRA_JAVA_OPTS=//") -[ -z "$EXTRA_JAVA_OPTS" ] && EXTRA_JAVA_OPTS='-server -Xms2g -Xmx6g -Xss256k -XX:+UseG1GC -XX:OnOutOfMemoryError="kill -9 %p"' -echo "export JAVA_OPTIONS=\"${EXTRA_JAVA_OPTS}\"" >> /var/opt/jfrog/artifactory/etc/default -chown artifactory:artifactory -R /var/opt/jfrog/artifactory/* && chown artifactory:artifactory -R /var/opt/jfrog/artifactory/etc/security && chown artifactory:artifactory -R /var/opt/jfrog/artifactory/etc/* - -# start Artifactory -sleep $((RANDOM % 240)) -service artifactory start -service nginx start -nginx -s reload -echo "INFO: Artifactory installation completed." > /tmp/artifactory-install.log diff --git a/JFrogContainerRegistry/AzureResourceManager/scripts/install_artifactory7.sh b/JFrogContainerRegistry/AzureResourceManager/scripts/install_artifactory7.sh deleted file mode 100644 index 77a62b7..0000000 --- a/JFrogContainerRegistry/AzureResourceManager/scripts/install_artifactory7.sh +++ /dev/null @@ -1,178 +0,0 @@ -#!/bin/bash -DB_URL=$(cat /var/lib/cloud/instance/user-data.txt | grep "^JDBC_STR" | sed "s/JDBC_STR=//") -DB_NAME=$(cat /var/lib/cloud/instance/user-data.txt | grep "^DB_NAME=" | sed "s/DB_NAME=//") -DB_USER=$(cat /var/lib/cloud/instance/user-data.txt | grep "^DB_ADMIN_USER=" | sed "s/DB_ADMIN_USER=//") -DB_PASSWORD=$(cat /var/lib/cloud/instance/user-data.txt | grep "^DB_ADMIN_PASSWD=" | sed "s/DB_ADMIN_PASSWD=//") -STORAGE_ACCT=$(cat /var/lib/cloud/instance/user-data.txt | grep "^STO_ACT_NAME=" | sed "s/STO_ACT_NAME=//") -STORAGE_ACT_ENDPOINT=$(cat /var/lib/cloud/instance/user-data.txt | grep "^STO_ACT_ENDPOINT=" | sed "s/STO_ACT_ENDPOINT=//") -STORAGE_CONTAINER=$(cat /var/lib/cloud/instance/user-data.txt | grep "^STO_CTR_NAME=" | sed "s/STO_CTR_NAME=//") -STORAGE_ACCT_KEY=$(cat /var/lib/cloud/instance/user-data.txt | grep "^STO_ACT_KEY=" | sed "s/STO_ACT_KEY=//") -MASTER_KEY=$(cat /var/lib/cloud/instance/user-data.txt | grep "^MASTER_KEY=" | sed "s/MASTER_KEY=//") -IS_PRIMARY=$(cat /var/lib/cloud/instance/user-data.txt | grep "^IS_PRIMARY=" | sed "s/IS_PRIMARY=//") - - -export DEBIAN_FRONTEND=noninteractive - -#Generate Self-Signed Cert -mkdir -p /etc/pki/tls/private/ /etc/pki/tls/certs/ -openssl req -nodes -x509 -newkey rsa:4096 -keyout /etc/pki/tls/private/example.key -out /etc/pki/tls/certs/example.pem -days 356 -subj "/C=US/ST=California/L=SantaClara/O=IT/CN=*.localhost" - -CERTIFICATE_DOMAIN=$(cat /var/lib/cloud/instance/user-data.txt | grep "^CERTIFICATE_DOMAIN=" | sed "s/CERTIFICATE_DOMAIN=//") -[ -z "$CERTIFICATE_DOMAIN" ] && CERTIFICATE_DOMAIN=artifactory - -ARTIFACTORY_SERVER_NAME=$(cat /var/lib/cloud/instance/user-data.txt | grep "^ARTIFACTORY_SERVER_NAME=" | sed "s/ARTIFACTORY_SERVER_NAME=//") -[ -z "$ARTIFACTORY_SERVER_NAME" ] && ARTIFACTORY_SERVER_NAME=artifactory - -#Configuring nginx -rm /etc/nginx/sites-enabled/default - -cat </etc/nginx/nginx.conf - #user nobody; - worker_processes 1; - error_log /var/log/nginx/error.log info; - #pid logs/nginx.pid; - events { - worker_connections 1024; - } - - http { - include mime.types; - variables_hash_max_size 1024; - variables_hash_bucket_size 64; - server_names_hash_max_size 4096; - server_names_hash_bucket_size 128; - types_hash_max_size 2048; - types_hash_bucket_size 64; - proxy_read_timeout 2400s; - client_header_timeout 2400s; - client_body_timeout 2400s; - proxy_connect_timeout 75s; - proxy_send_timeout 2400s; - proxy_buffer_size 32k; - proxy_buffers 40 32k; - proxy_busy_buffers_size 64k; - proxy_temp_file_write_size 250m; - proxy_http_version 1.1; - client_body_buffer_size 128k; - - include /etc/nginx/conf.d/*.conf; - default_type application/octet-stream; - log_format main '$remote_addr - $remote_user [$time_local] "$request" ' - '$status $body_bytes_sent "$http_referer" ' - '"$http_user_agent" "$http_x_forwarded_for"'; - access_log /var/log/nginx/access.log main; - sendfile on; - #tcp_nopush on; - #keepalive_timeout 0; - keepalive_timeout 65; - } -EOF - -cat </etc/nginx/conf.d/artifactory.conf -ssl_certificate /etc/pki/tls/certs/cert.pem; -ssl_certificate_key /etc/pki/tls/private/cert.key; -ssl_session_cache shared:SSL:1m; -ssl_prefer_server_ciphers on; -## server configuration -server { - listen 443 ssl; - listen 80 ; - server_name ~(?.+)\\.${CERTIFICATE_DOMAIN} artifactory ${ARTIFACTORY_SERVER_NAME}.${CERTIFICATE_DOMAIN}; - if (\$http_x_forwarded_proto = '') { - set \$http_x_forwarded_proto \$scheme; - } - ## Application specific logs - ## access_log /var/log/nginx/artifactory-access.log timing; - ## error_log /var/log/nginx/artifactory-error.log; - rewrite ^/$ /artifactory/webapp/ redirect; - rewrite ^/artifactory/?(/webapp)?$ /artifactory/webapp/ redirect; - chunked_transfer_encoding on; - client_max_body_size 0; - location /artifactory/ { - proxy_read_timeout 2400; - proxy_pass_header Server; - proxy_cookie_path ~*^/.* /; - proxy_pass http://127.0.0.1:8081/artifactory/; - proxy_set_header X-Artifactory-Override-Base-Url - \$http_x_forwarded_proto://\$host:\$server_port/artifactory; - proxy_set_header X-Forwarded-Port \$server_port; - proxy_set_header X-Forwarded-Proto \$http_x_forwarded_proto; - proxy_set_header Host \$http_host; - proxy_set_header X-Forwarded-For \$proxy_add_x_forwarded_for; - } - location / { - proxy_read_timeout 2400; - proxy_pass_header Server; - proxy_cookie_path ~*^/.* /; - proxy_pass http://127.0.0.1:8082; - proxy_set_header X-Artifactory-Override-Base-Url \$http_x_forwarded_proto://\$host:\$server_port/artifactory; - proxy_set_header X-Forwarded-Port \$server_port; - proxy_set_header X-Forwarded-Proto \$http_x_forwarded_proto; - proxy_set_header Host \$http_host; - proxy_set_header X-Forwarded-For \$proxy_add_x_forwarded_for; - } - -} -EOF - -HOSTNAME=$(ip route get 8.8.8.8 | awk '{print $NF; exit}') - -if [ "${IS_PRIMARY}" = "true" ]; then - NODE_NAME=art-primary -else - NODE_NAME=art-$(date +%s$RANDOM) -fi - -# Java options -EXTRA_JAVA_OPTS=$(cat /var/lib/cloud/instance/user-data.txt | grep "^EXTRA_JAVA_OPTS=" | sed "s/EXTRA_JAVA_OPTS=//") -sed -i -e "s/#extraJavaOpts: \"-Xms512m -Xmx2g\"/extraJavaOpts: ${EXTRA_JAVA_OPTS}/" /var/opt/jfrog/artifactory/etc/system.yaml - -# Set MS SQL configuration -cat <>/var/opt/jfrog/artifactory/etc/system.yaml - ## One of: mysql, oracle, mssql, postgresql, mariadb - ## Default: Embedded derby - ## Example for mysql - type: mssql - driver: com.microsoft.sqlserver.jdbc.SQLServerDriver - url: ${DB_URL};databaseName=${DB_NAME};sendStringParametersAsUnicode=false;applicationName=Artifactory Binary Repository - username: ${DB_USER} - password: ${DB_PASSWORD} - -EOF - -mkdir -p /var/opt/jfrog/artifactory/etc/security - -cat </opt/jfrog/artifactory/var/etc/security/master.key -${MASTER_KEY} -EOF - -# NOTE: Path is changed in Artifactory 7. Non-HA configuration -mkdir -p /var/opt/jfrog/artifactory/etc/artifactory -cat </var/opt/jfrog/artifactory/etc/artifactory/binarystore.xml - - - - ${STORAGE_ACCT} - ${STORAGE_ACCT_KEY} - https://${STORAGE_ACCT}.blob.core.windows.net/ - ${STORAGE_CONTAINER} - - -EOF - -cat /var/lib/cloud/instance/user-data.txt | grep "^CERTIFICATE=" | sed "s/CERTIFICATE=//" > /tmp/temp.pem -cat /tmp/temp.pem | sed 's/CERTIFICATE----- /&\n/g' | sed 's/ -----END/\n-----END/g' | awk '{if($0 ~ /----/) {print;} else { gsub(/ /,"\n");print;}}' > /etc/pki/tls/certs/cert.pem -rm /tmp/temp.pem - -cat /var/lib/cloud/instance/user-data.txt | grep "^CERTIFICATE_KEY=" | sed "s/CERTIFICATE_KEY=//" > /tmp/temp.key -cat /tmp/temp.key | sed 's/KEY----- /&\n/' | sed 's/ -----END/\n-----END/' | awk '{if($0 ~ /----/) {print;} else { gsub(/ /,"\n");print;}}' > /etc/pki/tls/private/cert.key -rm /tmp/temp.key - -chown artifactory:artifactory -R /var/opt/jfrog/artifactory/* && chown artifactory:artifactory -R /var/opt/jfrog/artifactory/etc/security && chown artifactory:artifactory -R /var/opt/jfrog/artifactory/etc/* - -# start Artifactory -sleep $((RANDOM % 240)) -service artifactory start -service nginx start -nginx -s reload -echo "INFO: Artifactory installation completed." >> /tmp/artifactory-install.log